Unrated severityNVD Advisory· Published Sep 26, 2008· Updated Apr 23, 2026

CVE-2008-3799

Description

Memory leak in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12.4, when VoIP is configured, allows remote attackers to cause a denial of service (memory consumption and voice-service outage) via unspecified valid SIP messages.

Affected products

Cisco Systems, Inc./Cisco iOS3 versions
cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/31990nvdThird Party Advisory
www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtmlnvdVendor Advisory
www.securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5927nvdThird Party Advisory
www.vupen.com/english/advisories/2008/2670nvdPermissions Required

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000