CVE-2009-1168
Published Jul 30, 2009
Last updated 7 years ago
Overview
- Description
- Cisco IOS 12.0(32)S12 through 12.0(32)S13 and 12.0(33)S3 through 12.0(33)S4, 12.0(32)SY8 through 12.0(32)SY9, 12.2(33)SXI1, 12.2XNC before 12.2(33)XNC2, 12.2XND before 12.2(33)XND1, and 12.4(24)T1; and IOS XE 2.3 through 2.3.1t and 2.4 through 2.4.0; when RFC4893 BGP routing is enabled, allows remote attackers to cause a denial of service (memory corruption and device reload) by using an RFC4271 peer to send an update with a long series of AS numbers, aka Bug ID CSCsy86021.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.1
- Impact score
- 6.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:C
Weaknesses
- nvd@nist.gov
- CWE-399
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios:12.0\\(32\\)s12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7F505B0A-E9E0-4CF3-B85B-70EEE71314F0"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.0\\(32\\)s13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ED66A91B-6429-4983-8167-07DECA601916"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.0\\(32\\)sy8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0F288884-3DB7-474D-B56B-120E2DB7975A"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.0\\(32\\)sy9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A29860C6-75E6-43A4-8BF5-E6ABF2040B0F"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.0\\(33\\)s3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AF0C8019-BDDA-4019-AF64-352EFFAC9036"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.0\\(33\\)s4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9BCFE974-9D9A-443D-A55D-6A2CBF96EC4D"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2\\(33\\)sxi1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4627BEF7-CEEB-4CBC-8620-4D9C5A7F7C30"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2\\(33\\)sxi2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "866E9A29-97D8-41E1-81BE-73FAF1B5E2DE"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xnc:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D57ACB3-4ADC-4FBE-BA46-395F277B9997"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.2xnd:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E2916FA5-1FFF-48FB-A079-693AD3444CC1"
},
{
"criteria": "cpe:2.3:o:cisco:ios:12.4\\(24\\)t1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2A6AD6E5-EBB0-44D8-A63C-EFF7260E4CC3"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "91895083-E6C5-432A-BF41-8D157E539C14"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:2.3.1t:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "57F6EF3B-2F31-4449-9B2A-9114D41BBC6A"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4964AB2C-E255-4844-8DD9-FFFC9512B7C4"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:2.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6D0B52CA-3834-4435-A3E1-9684A41E6405"
}
],
"operator": "OR"
}
]
}
]