CVE-2009-2867

Severity

78%

Complexity

99%

Confidentiality

115%

Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4T, 12.4XZ, and 12.4YA, when Zone-Based Policy Firewall SIP Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a crafted SIP transit packet, aka Bug ID CSCsr18691.

Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4T, 12.4XZ, and 12.4YA, when Zone-Based Policy Firewall SIP Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a crafted SIP transit packet, aka Bug ID CSCsr18691.

CVSS 2.0 Base Score 7.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C).

Overview

Type

Cisco IOS

First reported 15 years ago

2009-09-28 19:30:00

Last updated 7 years ago

2017-09-19 01:29:00

Affected Software

Cisco IOS 12.2XNA

12.2xna

Cisco IOS 12.2XNB

12.2xnb

Cisco IOS 12.2XNC

12.2xnc

Cisco IOS 12.2XND

12.2xnd

Cisco IOS 12.4T

12.4t

Cisco IOS 12.4XZ

12.4xz

Cisco IOS 12.4YA

12.4ya

Cisco IOS 12.4YB

12.4yb

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=18886

Vendor Advisory

20090923 Cisco IOS Software Zone-Based Policy Firewall Vulnerability

Vendor Advisory

1022930

ADV-2009-2759

oval:org.mitre.oval:def:7254

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.