Lucene search
HistoryAug 21, 2009 - 5:30 p.m.
CVE-2009-2056
3.3 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
MULTIPLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:M/C:N/I:N/A:P
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
41.9%
Cisco IOS XR 3.8.1 and earlier allows remote authenticated users to cause a denial of service (process crash) via vectors involving a BGP UPDATE message with many AS numbers prepended to the AS path.
Affected configurations
Node
ciscoios_xrRange≤3.8.1
ORciscoios_xrMatch3.0
ORciscoios_xrMatch3.0.1
ORciscoios_xrMatch3.1
ORciscoios_xrMatch3.1.0
ORciscoios_xrMatch3.2
ORciscoios_xrMatch3.2.1
ORciscoios_xrMatch3.2.2
ORciscoios_xrMatch3.2.3crs-1
ORciscoios_xrMatch3.2.3prp
ORciscoios_xrMatch3.2.4
ORciscoios_xrMatch3.2.50
ORciscoios_xrMatch3.3
ORciscoios_xrMatch3.4
ORciscoios_xrMatch3.4.0
ORciscoios_xrMatch3.4.1
ORciscoios_xrMatch3.4.2
ORciscoios_xrMatch3.4.3
ORciscoios_xrMatch3.5
ORciscoios_xrMatch3.5.2
ORciscoios_xrMatch3.5.3
ORciscoios_xrMatch3.5.4
ORciscoios_xrMatch3.6
ORciscoios_xrMatch3.6.0
ORciscoios_xrMatch3.6.1
ORciscoios_xrMatch3.6.2
ORciscoios_xrMatch3.6.3
ORciscoios_xrMatch3.7
ORciscoios_xrMatch3.7.0
ORciscoios_xrMatch3.7.1
ORciscoios_xrMatch3.7.2
ORciscoios_xrMatch3.7.3
ORciscoios_xrMatch3.8.0
Related
cve
cve
CVE-2009-2056
2022-10-03 16:24:05
prion
prion
Path traversal
2009-08-21 17:30:00
seebug
seebug
Cisco IOS XR BGP更新AS前置拒绝服务漏洞
2009-08-26 00:00:00
cvelist
cvelist
CVE-2009-2056
2022-10-03 16:24:05
nessus
nessus
Cisco IOS XR Software Border Gateway Protocol DoS (cisco-sa-20090818-bgp)
2022-04-05 00:00:00
cisco
cisco
Cisco IOS XR Software Border Gateway Protocol Vulnerabilities
2009-08-18 15:00:00
3.3 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
MULTIPLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:M/C:N/I:N/A:P
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
41.9%
Related for NVD:CVE-2009-2056