Vulnerability Details : CVE-2009-0638
The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages.
Vulnerability category: Denial of service
Products affected by CVE-2009-0638
- cpe:2.3:h:cisco:firewall_services_module:2.1_\(0.208\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:3.2\(3\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:3.2\(2\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:2.3\(1\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:4.0:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:4.0\(4\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:3.2:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:3.2\(1\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:3.1\(5\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:3.1\(6\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:2.2\(1\):*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:firewall_services_module:2.2:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
Exploit prediction scoring system (EPSS) score for CVE-2009-0638
1.33%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 79 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-0638
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2009-0638
-
http://www.vupen.com/english/advisories/2009/2329
Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/52591
-
http://www.securityfocus.com/bid/36085
Patch
-
http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml
Patch;Vendor Advisory
-
http://securitytracker.com/id?1022747
Jump to