Lucene search

[email protected]CVE-2009-2867

HistorySep 28, 2009 - 7:30 p.m.

CVE-2009-2867

2009-09-2819:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

ios

vulnerability

denial of service

sip

zone-based policy firewall

nvd

cve-2009-2867

6.7 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.014 Low

EPSS

Percentile

86.1%

JSON

Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4T, 12.4XZ, and 12.4YA, when Zone-Based Policy Firewall SIP Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a crafted SIP transit packet, aka Bug ID CSCsr18691.

CPENameOperatorVersion
cisco:ioscisco ioseq12.2xnd
cisco:ioscisco ioseq12.4t
cisco:ioscisco ioseq12.2xna
cisco:ioscisco ioseq12.4ya
cisco:ioscisco ioseq12.4xz
cisco:ioscisco ioseq12.2xnb
cisco:ioscisco ioseq12.4yb
cisco:ioscisco ioseq12.2xnc

CPE	Name	Operator	Version
cisco:ios	cisco ios	eq	12.2xnd
cisco:ios	cisco ios	eq	12.4t
cisco:ios	cisco ios	eq	12.2xna
cisco:ios	cisco ios	eq	12.4ya
cisco:ios	cisco ios	eq	12.4xz
cisco:ios	cisco ios	eq	12.2xnb
cisco:ios	cisco ios	eq	12.4yb
cisco:ios	cisco ios	eq	12.2xnc

References

tools.cisco.com/security/center/viewAlert.x?alertId=18886

www.cisco.com/en/US/products/products_security_advisory09186a0080af8130.shtml

www.securitytracker.com/id?1022930

www.vupen.com/english/advisories/2009/2759

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7254

6.7 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.014 Low

EPSS

Percentile

86.1%

JSON

Related for CVE-2009-2867

cisco1 nessus1 securityvulns2 prion1