Vulnerability Details CVE-2009-2867
Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4T, 12.4XZ, and 12.4YA, when Zone-Based Policy Firewall SIP Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a crafted SIP transit packet, aka Bug ID CSCsr18691.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.0%
CVSS Severity
CVSS v2 Score 7.8
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=18886
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8130.shtml
- http://www.securitytracker.com/id?1022930
- http://www.vupen.com/english/advisories/2009/2759
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7254
- http://tools.cisco.com/security/center/viewAlert.x?alertId=18886
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8130.shtml
- http://www.securitytracker.com/id?1022930
- http://www.vupen.com/english/advisories/2009/2759
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7254
Products affected by CVE-2009-2867
-
cpe:2.3:o:cisco:ios:12.2xna
-
cpe:2.3:o:cisco:ios:12.2xnb
-
cpe:2.3:o:cisco:ios:12.2xnc
-
cpe:2.3:o:cisco:ios:12.2xnd
-
cpe:2.3:o:cisco:ios:12.4t
-
cpe:2.3:o:cisco:ios:12.4xz
-
cpe:2.3:o:cisco:ios:12.4ya
-
cpe:2.3:o:cisco:ios:12.4yb