7.8
CVSSv2

CVE-2009-2868

Published: 28/09/2009 Updated: 01/10/2009
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

Unspecified vulnerability in Cisco IOS 12.2 up to and including 12.4, when certificate-based authentication is enabled for IKE, allows remote malicious users to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

cisco ios 12.2ex

cisco ios 12.2se

cisco ios 12.2sra

cisco ios 12.2xnc

cisco ios 12.2xnd

cisco ios 12.3yd

cisco ios 12.3yf

cisco ios 12.3yu

cisco ios 12.3yx

cisco ios 12.2sca

cisco ios 12.2scb

cisco ios 12.3yq

cisco ios 12.3xr

cisco ios 12.3ya

cisco ios 12.2irc

cisco ios 12.3xs

cisco ios 12.2srb

cisco ios 12.2xna

cisco ios 12.2ira

cisco ios 12.2sxh

cisco ios 12.4xd

cisco ios 12.2sb

cisco ios 12.3yt

cisco ios 12.2srd

cisco ios 12.2xnb

cisco ios 12.2sxi

cisco ios 12.3ys

cisco ios 12.2irb

cisco ios 12.4xb

cisco ios 12.3xx

cisco ios 12.4xc

cisco ios 12.3yi

cisco ios 12.2src

cisco ios 12.4t

cisco ios 12.3t

cisco ios 12.3xl

cisco ios 12.3yz

cisco ios 12.3yg

cisco ios 12.4

cisco ios 12.3yh

Vendor Advisories

Cisco IOS® devices that are configured for Internet Key Exchange (IKE) protocol and certificate based authentication are vulnerable to a resource exhaustion attack Successful exploitation of this vulnerability may result in the allocation of all available Phase 1 security associations (SA) and prevent the establishment of new IPsec sessio ...