CVE-2009-2868
Cisco Security Advisory 20090923-ipsec
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.
Vulnerabilidad sin especificar en Cisco IOS v12.2 hasta la v12.4. Cuando la autenticación basada en certificado está activada, permite a usuarios remotos provocar una denegación de servicio (agotamiento de Phase 1 SA) a través de peticiones modificadas. También conocido como aka Bug IDs CSCsy07555 and CSCee72997.
Cisco IOS devices that are configured for Internet Key Exchange (IKE) protocol and certificate based authentication are vulnerable to a resource exhaustion attack. Successful exploitation of this vulnerability may result in the allocation of all available Phase 1 security associations (SA) and prevent the establishment of new IPsec sessions.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-08-19 CVE Reserved
- 2009-09-24 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.vupen.com/english/advisories/2009/2759 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2ex Search vendor "Cisco" for product "Ios" and version "12.2ex" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2ira Search vendor "Cisco" for product "Ios" and version "12.2ira" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2irb Search vendor "Cisco" for product "Ios" and version "12.2irb" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2irc Search vendor "Cisco" for product "Ios" and version "12.2irc" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2sb Search vendor "Cisco" for product "Ios" and version "12.2sb" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2sca Search vendor "Cisco" for product "Ios" and version "12.2sca" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2scb Search vendor "Cisco" for product "Ios" and version "12.2scb" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2se Search vendor "Cisco" for product "Ios" and version "12.2se" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2sra Search vendor "Cisco" for product "Ios" and version "12.2sra" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2srb Search vendor "Cisco" for product "Ios" and version "12.2srb" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2src Search vendor "Cisco" for product "Ios" and version "12.2src" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2srd Search vendor "Cisco" for product "Ios" and version "12.2srd" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2sxh Search vendor "Cisco" for product "Ios" and version "12.2sxh" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2sxi Search vendor "Cisco" for product "Ios" and version "12.2sxi" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2xna Search vendor "Cisco" for product "Ios" and version "12.2xna" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2xnb Search vendor "Cisco" for product "Ios" and version "12.2xnb" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2xnc Search vendor "Cisco" for product "Ios" and version "12.2xnc" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.2xnd Search vendor "Cisco" for product "Ios" and version "12.2xnd" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3t Search vendor "Cisco" for product "Ios" and version "12.3t" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3xl Search vendor "Cisco" for product "Ios" and version "12.3xl" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3xr Search vendor "Cisco" for product "Ios" and version "12.3xr" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3xs Search vendor "Cisco" for product "Ios" and version "12.3xs" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3xx Search vendor "Cisco" for product "Ios" and version "12.3xx" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3ya Search vendor "Cisco" for product "Ios" and version "12.3ya" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yd Search vendor "Cisco" for product "Ios" and version "12.3yd" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yf Search vendor "Cisco" for product "Ios" and version "12.3yf" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yg Search vendor "Cisco" for product "Ios" and version "12.3yg" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yh Search vendor "Cisco" for product "Ios" and version "12.3yh" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yi Search vendor "Cisco" for product "Ios" and version "12.3yi" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yq Search vendor "Cisco" for product "Ios" and version "12.3yq" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3ys Search vendor "Cisco" for product "Ios" and version "12.3ys" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yt Search vendor "Cisco" for product "Ios" and version "12.3yt" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yu Search vendor "Cisco" for product "Ios" and version "12.3yu" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yx Search vendor "Cisco" for product "Ios" and version "12.3yx" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.3yz Search vendor "Cisco" for product "Ios" and version "12.3yz" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4 Search vendor "Cisco" for product "Ios" and version "12.4" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4t Search vendor "Cisco" for product "Ios" and version "12.4t" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4xb Search vendor "Cisco" for product "Ios" and version "12.4xb" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4xc Search vendor "Cisco" for product "Ios" and version "12.4xc" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4xd Search vendor "Cisco" for product "Ios" and version "12.4xd" | - |
Affected
| ||||||