Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-0628
HistoryMar 27, 2009 - 4:30 p.m.

CVE-2009-0628

2009-03-2716:30:01
CWE-200
[email protected]
web.nvd.nist.gov
30
cve-2009-0628
cisco
ios
sslvpn
memory leak
dos
nvd

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

6.6 Medium

AI Score

Confidence

Low

0.021 Low

EPSS

Percentile

89.2%

JSON

Memory leak in the SSLVPN feature in Cisco IOS 12.3 through 12.4 allows remote attackers to cause a denial of service (memory consumption and device crash) by disconnecting an SSL session in an abnormal manner, leading to a Transmission Control Block (TCB) leak.

Affected configurations

NVD
Node
ciscocisco_iosMatch12.3
OR
ciscocisco_iosMatch12.3b
OR
ciscocisco_iosMatch12.3bc
OR
ciscocisco_iosMatch12.3bw
OR
ciscocisco_iosMatch12.3eu
OR
ciscocisco_iosMatch12.3ja
OR
ciscocisco_iosMatch12.3jea
OR
ciscocisco_iosMatch12.3jeb
OR
ciscocisco_iosMatch12.3jec
OR
ciscocisco_iosMatch12.3jk
OR
ciscocisco_iosMatch12.3jl
OR
ciscocisco_iosMatch12.3jx
OR
ciscocisco_iosMatch12.3t
OR
ciscocisco_iosMatch12.3tpc
OR
ciscocisco_iosMatch12.3va
OR
ciscocisco_iosMatch12.3xa
OR
ciscocisco_iosMatch12.3xb
OR
ciscocisco_iosMatch12.3xc
OR
ciscocisco_iosMatch12.3xd
OR
ciscocisco_iosMatch12.3xe
OR
ciscocisco_iosMatch12.3xf
OR
ciscocisco_iosMatch12.3xg
OR
ciscocisco_iosMatch12.3xh
OR
ciscocisco_iosMatch12.3xi
OR
ciscocisco_iosMatch12.3xj
OR
ciscocisco_iosMatch12.3xk
OR
ciscocisco_iosMatch12.3xq
OR
ciscocisco_iosMatch12.3xr
OR
ciscocisco_iosMatch12.3xs
OR
ciscocisco_iosMatch12.3xu
OR
ciscocisco_iosMatch12.3xw
OR
ciscocisco_iosMatch12.3xy
OR
ciscocisco_iosMatch12.3ya
OR
ciscocisco_iosMatch12.3yd
OR
ciscocisco_iosMatch12.3yf
OR
ciscocisco_iosMatch12.3yg
OR
ciscocisco_iosMatch12.3yh
OR
ciscocisco_iosMatch12.3yi
OR
ciscocisco_iosMatch12.3yj
OR
ciscocisco_iosMatch12.3yk
OR
ciscocisco_iosMatch12.3ym
OR
ciscocisco_iosMatch12.3yq
OR
ciscocisco_iosMatch12.3ys
OR
ciscocisco_iosMatch12.3yt
OR
ciscocisco_iosMatch12.3yu
OR
ciscocisco_iosMatch12.3yx
OR
ciscocisco_iosMatch12.3yz
OR
ciscocisco_iosMatch12.4
OR
ciscocisco_iosMatch12.4ja
OR
ciscocisco_iosMatch12.4jk
OR
ciscocisco_iosMatch12.4jma
OR
ciscocisco_iosMatch12.4jmb
OR
ciscocisco_iosMatch12.4jmc
OR
ciscocisco_iosMatch12.4jx
OR
ciscocisco_iosMatch12.4md
OR
ciscocisco_iosMatch12.4mr
OR
ciscocisco_iosMatch12.4sw
OR
ciscocisco_iosMatch12.4t
OR
ciscocisco_iosMatch12.4xa
OR
ciscocisco_iosMatch12.4xb
OR
ciscocisco_iosMatch12.4xc
OR
ciscocisco_iosMatch12.4xd
OR
ciscocisco_iosMatch12.4xe
OR
ciscocisco_iosMatch12.4xf
OR
ciscocisco_iosMatch12.4xg
OR
ciscocisco_iosMatch12.4xj
OR
ciscocisco_iosMatch12.4xk

Related

prion 1
cvelist 1
nvd 1
seebug 1
nessus 1
securityvulns 2
openvas 2
prion
prion
Design/Logic Flaw
2009-03-27 16:30:00
cvelist
cvelist
CVE-2009-0628
2009-03-27 16:00:00
nvd
nvd
CVE-2009-0628
2009-03-27 16:30:01
seebug
seebug
Cisco IOS WebVPN/SSLVPNθΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-03-28 00:00:00
nessus
nessus
Cisco IOS Software WebVPN and SSLVPN Vulnerabilities - Cisco Systems
2010-09-01 00:00:00
securityvulns
securityvulns
Cisco Security Advisory: Cisco IOS Software WebVPN and SSLVPN Vulnerabilities
2009-03-26 00:00:00
Cisco IOS multiple security vulnerabilities
2009-04-01 00:00:00
openvas
openvas
Ubuntu USN-744-1 (lcms)
2009-06-05 00:00:00
Ubuntu USN-743-1 (gs-gpl)
2009-06-05 00:00:00

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

6.6 Medium

AI Score

Confidence

Low

0.021 Low

EPSS

Percentile

89.2%

JSON
Related for CVE-2009-0628
prion1cvelist1nvd1seebug1nessus1securityvulns2openvas2