CVE-2009-0638
First published: Fri Aug 21 2009(Updated: )
The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Firewall Services Module Software | =2.1_\(0.208\) | |
| Cisco Firewall Services Module Software | =2.2 | |
| Cisco Firewall Services Module Software | =2.2\(1\) | |
| Cisco Firewall Services Module Software | =2.3 | |
| Cisco Firewall Services Module Software | =2.3\(1\) | |
| Cisco Firewall Services Module Software | =3.1 | |
| Cisco Firewall Services Module Software | =3.1\(5\) | |
| Cisco Firewall Services Module Software | =3.1\(6\) | |
| Cisco Firewall Services Module Software | =3.2 | |
| Cisco Firewall Services Module Software | =3.2\(1\) | |
| Cisco Firewall Services Module Software | =3.2\(2\) | |
| Cisco Firewall Services Module Software | =3.2\(3\) | |
| Cisco Firewall Services Module Software | =4.0 | |
| Cisco Firewall Services Module Software | =4.0\(4\) | |
| Cisco Catalyst 6500-E | ||
| Cisco Catalyst 7600 Series |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml
- http://securitytracker.com/id?1022747
- http://secunia.com/advisories/36373
- http://www.securityfocus.com/bid/36085
- http://www.vupen.com/english/advisories/2009/2329
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52591
Frequently Asked Questions
What is the severity of CVE-2009-0638?
CVE-2009-0638 has a severity rating that can lead to denial of service conditions on the affected Cisco devices.
How do I fix CVE-2009-0638?
To fix CVE-2009-0638, upgrade the Cisco Firewall Services Module to the latest version as indicated in the vendor's advisory.
What are the affected versions of Cisco Firewall Services Module for CVE-2009-0638?
CVE-2009-0638 affects versions 2.1, 2.2, 2.3, 3.1, 3.2, and 4.0 of the Cisco Firewall Services Module.
What types of attacks are possible due to CVE-2009-0638?
CVE-2009-0638 allows remote attackers to send malformed ICMP messages to cause a denial of service.
Is CVE-2009-0638 present in Cisco Catalyst 6500 and 7600 series routers?
Yes, CVE-2009-0638 affects the Cisco Firewall Services Module used in Catalyst 6500 and 7600 series routers.
- collector/nvd-historical
- agent/references
- agent/type
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco firewall services module software
- version/cisco firewall services module software/2.1_\(0.208\)
- version/cisco firewall services module software/2.2
- version/cisco firewall services module software/2.2\(1\)
- version/cisco firewall services module software/2.3
- version/cisco firewall services module software/2.3\(1\)
- version/cisco firewall services module software/3.1
- version/cisco firewall services module software/3.1\(5\)
- version/cisco firewall services module software/3.1\(6\)
- version/cisco firewall services module software/3.2
- version/cisco firewall services module software/3.2\(1\)
- version/cisco firewall services module software/3.2\(2\)
- version/cisco firewall services module software/3.2\(3\)
- version/cisco firewall services module software/4.0
- version/cisco firewall services module software/4.0\(4\)
- canonical/cisco catalyst 6500-e
- canonical/cisco catalyst 7600 series