CVE-2009-0628: Infoleak
First published: Fri Mar 27 2009(Updated: )
Memory leak in the SSLVPN feature in Cisco IOS 12.3 through 12.4 allows remote attackers to cause a denial of service (memory consumption and device crash) by disconnecting an SSL session in an abnormal manner, leading to a Transmission Control Block (TCB) leak.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Cisco Ios | =12.3-xe | |
| Cisco Cisco Ios | =12.3-yu | |
| Cisco Cisco Ios | =12.3-jl | |
| Cisco Cisco Ios | =12.3-xh | |
| Cisco Cisco Ios | =12.3-bw | |
| Cisco Cisco Ios | =12.3-xf | |
| Cisco Cisco Ios | =12.4-ja | |
| Cisco Cisco Ios | =12.3-xy | |
| Cisco Cisco Ios | =12.3-xa | |
| Cisco Cisco Ios | =12.4-jx | |
| Cisco Cisco Ios | =12.3-ya | |
| Cisco Cisco Ios | =12.3-eu | |
| Cisco Cisco Ios | =12.3-jeb | |
| Cisco Cisco Ios | =12.3-b | |
| Cisco Cisco Ios | =12.4-xe | |
| Cisco Cisco Ios | =12.3-xi | |
| Cisco Cisco Ios | =12.4-xb | |
| Cisco Cisco Ios | =12.4-sw | |
| Cisco Cisco Ios | =12.3-xd | |
| Cisco Cisco Ios | =12.4-mr | |
| Cisco Cisco Ios | =12.3-xk | |
| Cisco Cisco Ios | =12.3-yz | |
| Cisco Cisco Ios | =12.4-t | |
| Cisco Cisco Ios | =12.4-jma | |
| Cisco Cisco Ios | =12.3-yj | |
| Cisco Cisco Ios | =12.4-xg | |
| Cisco Cisco Ios | =12.3-xu | |
| Cisco Cisco Ios | =12.3-yq | |
| Cisco Cisco Ios | =12.3-xq | |
| Cisco Cisco Ios | =12.4-jmb | |
| Cisco Cisco Ios | =12.3-jea | |
| Cisco Cisco Ios | =12.3 | |
| Cisco Cisco Ios | =12.3-xc | |
| Cisco Cisco Ios | =12.3-xj | |
| Cisco Cisco Ios | =12.3-ys | |
| Cisco Cisco Ios | =12.3-t | |
| Cisco Cisco Ios | =12.3-xs | |
| Cisco Cisco Ios | =12.4-jk | |
| Cisco Cisco Ios | =12.4 | |
| Cisco Cisco Ios | =12.3-va | |
| Cisco Cisco Ios | =12.3-jx | |
| Cisco Cisco Ios | =12.4-jmc | |
| Cisco Cisco Ios | =12.3-yh | |
| Cisco Cisco Ios | =12.3-yx | |
| Cisco Cisco Ios | =12.3-yk | |
| Cisco Cisco Ios | =12.4-md | |
| Cisco Cisco Ios | =12.3-jk | |
| Cisco Cisco Ios | =12.4-xj | |
| Cisco Cisco Ios | =12.3-ym | |
| Cisco Cisco Ios | =12.4-xc | |
| Cisco Cisco Ios | =12.3-tpc | |
| Cisco Cisco Ios | =12.4-xk | |
| Cisco Cisco Ios | =12.3-ja | |
| Cisco Cisco Ios | =12.4-xa | |
| Cisco Cisco Ios | =12.3-jec | |
| Cisco Cisco Ios | =12.3-yi | |
| Cisco Cisco Ios | =12.3-bc | |
| Cisco Cisco Ios | =12.3-xb | |
| Cisco Cisco Ios | =12.4-xd | |
| Cisco Cisco Ios | =12.3-yf | |
| Cisco Cisco Ios | =12.3-yg | |
| Cisco Cisco Ios | =12.3-xg | |
| Cisco Cisco Ios | =12.3-yt | |
| Cisco Cisco Ios | =12.4-xf | |
| Cisco Cisco Ios | =12.3-yd | |
| Cisco Cisco Ios | =12.3-xw | |
| Cisco Cisco Ios | =12.3-xr |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securitytracker.com/id?1021896
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90469.shtml
- http://www.vupen.com/english/advisories/2009/0851
- http://secunia.com/advisories/34438
- http://www.securityfocus.com/bid/34239
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90424.shtml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49427
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12092
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- collector/nvd-index
- vendor/cisco
- canonical/cisco cisco ios
- version/cisco cisco ios/12.3-xe
- version/cisco cisco ios/12.3-yu
- version/cisco cisco ios/12.3-jl
- version/cisco cisco ios/12.3-xh
- version/cisco cisco ios/12.3-bw
- version/cisco cisco ios/12.3-xf
- version/cisco cisco ios/12.4-ja
- version/cisco cisco ios/12.3-xy
- version/cisco cisco ios/12.3-xa
- version/cisco cisco ios/12.4-jx
- version/cisco cisco ios/12.3-ya
- version/cisco cisco ios/12.3-eu
- version/cisco cisco ios/12.3-jeb
- version/cisco cisco ios/12.3-b
- version/cisco cisco ios/12.4-xe
- version/cisco cisco ios/12.3-xi
- version/cisco cisco ios/12.4-xb
- version/cisco cisco ios/12.4-sw
- version/cisco cisco ios/12.3-xd
- version/cisco cisco ios/12.4-mr
- version/cisco cisco ios/12.3-xk
- version/cisco cisco ios/12.3-yz
- version/cisco cisco ios/12.4-t
- version/cisco cisco ios/12.4-jma
- version/cisco cisco ios/12.3-yj
- version/cisco cisco ios/12.4-xg
- version/cisco cisco ios/12.3-xu
- version/cisco cisco ios/12.3-yq
- version/cisco cisco ios/12.3-xq
- version/cisco cisco ios/12.4-jmb
- version/cisco cisco ios/12.3-jea
- version/cisco cisco ios/12.3
- version/cisco cisco ios/12.3-xc
- version/cisco cisco ios/12.3-xj
- version/cisco cisco ios/12.3-ys
- version/cisco cisco ios/12.3-t
- version/cisco cisco ios/12.3-xs
- version/cisco cisco ios/12.4-jk
- version/cisco cisco ios/12.4
- version/cisco cisco ios/12.3-va
- version/cisco cisco ios/12.3-jx
- version/cisco cisco ios/12.4-jmc
- version/cisco cisco ios/12.3-yh
- version/cisco cisco ios/12.3-yx
- version/cisco cisco ios/12.3-yk
- version/cisco cisco ios/12.4-md
- version/cisco cisco ios/12.3-jk
- version/cisco cisco ios/12.4-xj
- version/cisco cisco ios/12.3-ym
- version/cisco cisco ios/12.4-xc
- version/cisco cisco ios/12.3-tpc
- version/cisco cisco ios/12.4-xk
- version/cisco cisco ios/12.3-ja
- version/cisco cisco ios/12.4-xa
- version/cisco cisco ios/12.3-jec
- version/cisco cisco ios/12.3-yi
- version/cisco cisco ios/12.3-bc
- version/cisco cisco ios/12.3-xb
- version/cisco cisco ios/12.4-xd
- version/cisco cisco ios/12.3-yf
- version/cisco cisco ios/12.3-yg
- version/cisco cisco ios/12.3-xg
- version/cisco cisco ios/12.3-yt
- version/cisco cisco ios/12.4-xf
- version/cisco cisco ios/12.3-yd
- version/cisco cisco ios/12.3-xw
- version/cisco cisco ios/12.3-xr