CVE-2009-0638
Summary
| CVE | CVE-2009-0638 |
|---|---|
| State | PUBLISHED |
| Assigner | cisco |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2009-08-21 11:02:41 UTC |
| Updated | 2026-04-23 00:35:47 UTC |
| Description | The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages. |
Risk And Classification
Primary CVSS: v2.0 7.8 from [email protected]
AV:N/AC:L/Au:N/C:N/I:N/A:C
Problem Types: NVD-CWE-Other | n/a
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
LowAuthentication
NoneConfidentiality
NoneIntegrity
NoneAvailability
CompleteAV:N/AC:L/Au:N/C:N/I:N/A:C
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | Catalyst 6500 | All | All | All | All |
| Hardware | Cisco | Catalyst 7600 | All | All | All | All |
| Hardware | Cisco | Firewall Services Module | 2.1_\(0.208\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 2.2 | All | All | All |
| Hardware | Cisco | Firewall Services Module | 2.2\(1\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 2.3 | All | All | All |
| Hardware | Cisco | Firewall Services Module | 2.3\(1\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 3.1 | All | All | All |
| Hardware | Cisco | Firewall Services Module | 3.1\(5\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 3.1\(6\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 3.2 | All | All | All |
| Hardware | Cisco | Firewall Services Module | 3.2\(1\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 3.2\(2\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 3.2\(3\) | All | All | All |
| Hardware | Cisco | Firewall Services Module | 4.0 | All | All | All |
| Hardware | Cisco | Firewall Services Module | 4.0\(4\) | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IBM X-Force Exchange | af854a3a-2127-422b-91ae-364da2661108 | exchange.xforce.ibmcloud.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | af854a3a-2127-422b-91ae-364da2661108 | www.vupen.com | Vendor Advisory |
| SecurityTracker.com Archives - Cisco Firewall Services Module ICMP Processing Bug Lets Remote Users Deny Service | af854a3a-2127-422b-91ae-364da2661108 | securitytracker.com | |
| Cisco Security Advisory: Firewall Services Module Crafted ICMP Message Vulnerability - Cisco Systems | af854a3a-2127-422b-91ae-364da2661108 | www.cisco.com | Patch, Vendor Advisory |
| Cisco Firewall Services Module ICMP Packet Remote Denial of Service Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | Patch |
| Cisco Firewall Services Module ICMP Message Denial of Service - Secunia Advisories - Vulnerability Information - Secunia.com | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.