CVE-2009-0626

Severity

78%

Complexity

99%

Confidentiality

115%

The SSLVPN feature in Cisco IOS 12.3 through 12.4 allows remote attackers to cause a denial of service (device reload or hang) via a crafted HTTPS packet.

The SSLVPN feature in Cisco IOS 12.3 through 12.4 allows remote attackers to cause a denial of service (device reload or hang) via a crafted HTTPS packet.

CVSS 2.0 Base Score 7.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C).

Overview

Type

Cisco IOS

First reported 15 years ago

2009-03-27 16:30:00

Last updated 7 years ago

2017-09-29 01:33:00

Affected Software

Cisco IOS 12.3

12.3

Cisco IOS 12.3B

12.3b

Cisco IOS 12.3BC

12.3bc

Cisco IOS 12.3BW

12.3bw

Cisco IOS 12.3JA

12.3ja

Cisco IOS 12.3JEA

12.3jea

Cisco IOS 12.3JEB

12.3jeb

Cisco IOS 12.3JEC

12.3jec

Cisco IOS 12.3JK

12.3jk

Cisco IOS 12.3JL

12.3jl

Cisco IOS 12.3JX

12.3jx

Cisco IOS 12.3T

12.3t

Cisco IOS 12TPC

12.3tpc

Cisco IOS 12.3VA

12.3va

Cisco IOS 12.3XA

12.3xa

Cisco IOS 12.3XB

12.3xb

Cisco IOS 12.3XC

12.3xc

Cisco IOS 12.3XD

12.3xd

Cisco IOS 12.3XF

12.3xf

Cisco IOS 12.3XG

12.3xg

Cisco IOS 12.3XI

12.3xi

Cisco IOS 12.3XJ

12.3xj

Cisco IOS 12.3XK

12.3xk

Cisco IOS 12.3XL

12.3xl

Cisco IOS 12.3XQ

12.3xq

Cisco IOS 12.3XS

12.3xs

Cisco IOS 12.3XU

12.3xu

Cisco IOS 12.3XW

12.3xw

Cisco IOS 12.3XX

12.3xx

Cisco IOS 12.3XY

12.3xy

Cisco IOS 12.3XZ

12.3xz

Cisco IOS 12.3YA

12.3ya

Cisco IOS 12.3YD

12.3yd

Cisco IOS 12.3YF

12.3yf

Cisco IOS 12.3YG

12.3yg

Cisco IOS 12.3YH

12.3yh

Cisco IOS 12.3YI

12.3yi

Cisco IOS 12.3YJ

12.3yj

Cisco IOS 12.3YK

12.3yk

Cisco IOS 12.3YM

12.3ym

Cisco IOS 12.3YQ

12.3yq

Cisco IOS 12.3YS

12.3ys

Cisco IOS 12.3YT

12.3yt

Cisco IOS 12.3YU

12.3yu

Cisco IOS 12.3YX

12.3yx

Cisco IOS 12.3YZ

12.3yz

Cisco IOS 12.4

12.4

Cisco IOS 12.4JA

12.4ja

Cisco IOS 12.4JDA

12.4jda

Cisco IOS 12.4JK

12.4jk

Cisco IOS 12.4JL

12.4jl

Cisco IOS 12.4JMA

12.4jma

Cisco IOS 12.4JMB

12.4jmb

Cisco IOS 12.4JX

12.4jx

Cisco IOS 12.4 MD

12.4md

Cisco IOS 12.4MR

12.4mr

Cisco IOS 12.4SW

12.4sw

Cisco IOS 12.4T

12.4t

Cisco IOS 12.4XA

12.4xa

Cisco IOS 12.4XB

12.4xb

Cisco IOS 12.4XC

12.4xc

Cisco IOS 12.4XD

12.4xd

Cisco IOS 12.4XF

12.4xf

Cisco IOS 12.4XG

12.4xg

Cisco IOS 12.4XJ

12.4xj

Cisco IOS 12.4xk

12.4xk

Cisco IOS 12.4XL

12.4xl

Cisco IOS 12.4XM

12.4xm

Cisco IOS 12.4XN

12.4xn

Cisco IOS 12.4XP

12.4xp

Cisco IOS 12.4XQ

12.4xq

Cisco IOS 12.4XT

12.4xt

Cisco IOS 12.4XV

12.4xv

Cisco IOS 12.4XW

12.4xw

Cisco IOS 12.4XY

12.4xy

Cisco IOS 12.4XZ

12.4xz

Cisco IOS 12.4YA

12.4ya

References

34438

Vendor Advisory

1021896

20090325 Cisco IOS Software WebVPN and SSLVPN Vulnerabilities

Vendor Advisory

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90469.shtml

Vendor Advisory

34239

ADV-2009-0851

Vendor Advisory

ios-sslvpn-dos(49425)

oval:org.mitre.oval:def:6919

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.