PRIOn knowledge basePRION:CVE-2009-0629Design/Logic Flaw
7.2 High
AI Score
Confidence
High
5.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
0.017 Low
EPSS
Percentile
87.4%
The (1) Airline Product Set (aka ALPS), (2) Serial Tunnel Code (aka STUN), (3) Block Serial Tunnel Code (aka BSTUN), (4) Native Client Interface Architecture (NCIA) support, (5) Data-link switching (aka DLSw), (6) Remote Source-Route Bridging (RSRB), (7) Point to Point Tunneling Protocol (PPTP), (8) X.25 for Record Boundary Preservation (RBP), (9) X.25 over TCP (XOT), and (10) X.25 Routing features in Cisco IOS 12.2 and 12.4 allows remote attackers to cause a denial of service (device reload) via a series of crafted TCP packets.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ios | eq | 12.42.0-t2 | |
| ios | eq | 12.4.116 | |
| ios | eq | 12.42.0-t4 | |
| ios | eq | 12.2.0-sga | |
| ios | eq | 12.2.0-xr | |
| ios | eq | 12.46.116 | |
| ios | eq | 12.2.0-cz | |
| ios | eq | 12.2.0-sxf | |
| ios | eq | 12.2.0-fy | |
| ios | eq | 12.2.0-xe |
References
secunia.com/advisories/34438
securitytracker.com/id?1021903
www.cisco.com/en/US/products/products_security_advisory09186a0080a90469.shtml
www.cisco.com/en/US/products/products_security_advisory09186a0080a904cb.shtml
www.securityfocus.com/bid/34238
www.vupen.com/english/advisories/2009/0851
exchange.xforce.ibmcloud.com/vulnerabilities/49420
Related
7.2 High
AI Score
Confidence
High
5.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
0.017 Low
EPSS
Percentile
87.4%