CVE-2009-2868
published 2009-09-28CVE-2009-2868: Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial…
high7.8CVSS 3.1
AVNACLAuNCNINAC
Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.
Affected
41 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
Cisco
Cisco IOS Software Internet Key Exchange Resource Exhaustion Vulnerability
vendor_cisco·2009-09-23·CVSS 7.8
CVE-2009-2868 [HIGH] CWE-399 Cisco IOS Software Internet Key Exchange Resource Exhaustion Vulnerability
Cisco IOS Software Internet Key Exchange Resource Exhaustion Vulnerability
Cisco IOS® devices that are configured for
Internet Key Exchange (IKE) protocol and certificate based authentication are
vulnerable to a resource exhaustion attack. Successful exploitation of this
vulnerability may result in the allocation of all available Phase 1 security
associations (SA) and prevent the establishment of new IPsec sessions.
Cisco has released software updates that address this vulnerability.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090923-ipsec.
Note: The September 23, 2009, Cisco IOS Security Advisory bundled
publication includes eleven Security Advisories. Ten of the advisories address
vulnerabilities in Cisco IOS Sof
Cisco
Cisco IOS Software Internet Key Exchange Resource Exhaustion Vulnerability
vendor_cisco
CVE-2009-2868 Cisco IOS Software Internet Key Exchange Resource Exhaustion Vulnerability
CVE-2009-2868: Cisco IOS Software Internet Key Exchange Resource Exhaustion Vulnerability
Cisco IOS � devices that are configured for Internet Key Exchange (IKE) protocol and certificate based authentication are vulnerable to a resource exhaustion attack. Successful exploitation of this vulnerability may result in the allocation of all available Phase 1 security associations (SA) and prevent the establishment of new IPsec sessions. Cisco has released software updates that address this vulnerability. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090923-ipsec . Note: The September 23, 2009, Cisco IOS Security Advisory bundled publication includes eleven Security Advisories. Ten of the advisories address vulnerabilities in
GHSA
GHSA-35r5-pw6j-5f37: Unspecified vulnerability in Cisco IOS 12
ghsa_unreviewed·2022-05-02
CVE-2009-2868 [HIGH] GHSA-35r5-pw6j-5f37: Unspecified vulnerability in Cisco IOS 12
Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://tools.cisco.com/security/center/viewAlert.x?alertId=18887http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8117.shtmlhttp://www.vupen.com/english/advisories/2009/2759http://tools.cisco.com/security/center/viewAlert.x?alertId=18887http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8117.shtmlhttp://www.vupen.com/english/advisories/2009/2759
2009-09-28
Published