{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-08-19T00:00:00", "descriptions": [{"lang": "en", "value": "The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20090819 Firewall Services Module Crafted ICMP Message Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml"}, {"name": "36085", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/36085"}, {"name": "cisco-fwsm-icmp-dos(52591)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/52591"}, {"name": "1022747", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1022747"}, {"name": "36373", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/36373"}, {"name": "ADV-2009-2329", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/2329"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2009-0638", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20090819 Firewall Services Module Crafted ICMP Message Vulnerability", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml"}, {"name": "36085", "refsource": "BID", "url": "http://www.securityfocus.com/bid/36085"}, {"name": "cisco-fwsm-icmp-dos(52591)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/52591"}, {"name": "1022747", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1022747"}, {"name": "36373", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/36373"}, {"name": "ADV-2009-2329", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/2329"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T04:40:05.123Z"}, "title": "CVE Program Container", "references": [{"name": "20090819 Firewall Services Module Crafted ICMP Message Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml"}, {"name": "36085", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/36085"}, {"name": "cisco-fwsm-icmp-dos(52591)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/52591"}, {"name": "1022747", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1022747"}, {"name": "36373", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/36373"}, {"name": "ADV-2009-2329", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2009/2329"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2009-0638", "datePublished": "2009-08-20T22:00:00", "dateReserved": "2009-02-18T00:00:00", "dateUpdated": "2024-08-07T04:40:05.123Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:firewall_services_module:2.1_\\(0.208\\):*:*:*:*:*:*:*", "matchCriteriaId": "6479D85C-1A12-486D-818C-6679F415CA26", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "9AEE8A6C-2922-42DB-8C26-3A516F751F59", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:2.2\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "17A5D865-1A69-4563-9D2B-B7458C0D24EF", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*", "matchCriteriaId": "E9A8528D-DF6A-4493-A77E-CBF08359F2E4", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:2.3\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "B55C6770-7C6A-4684-A474-5C9D9902FDBB", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "F90E9070-781D-4D3D-98EB-5B6DB9D3C75E", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:3.1\\(5\\):*:*:*:*:*:*:*", "matchCriteriaId": "DE4BC31D-86C0-4E13-BA69-B35752298169", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:3.1\\(6\\):*:*:*:*:*:*:*", "matchCriteriaId": "27EF8892-389E-4F9E-B672-A5F1C05B1E38", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:3.2:*:*:*:*:*:*:*", "matchCriteriaId": "69D799FD-6274-499B-8108-5093CE1482AB", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:3.2\\(1\\):*:*:*:*:*:*:*", "matchCriteriaId": "0E49D8E9-7D46-4519-9A6B-B6F01D8DBAC0", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:3.2\\(2\\):*:*:*:*:*:*:*", "matchCriteriaId": "205ECBCE-6D91-44C2-8E00-DB7C20967704", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:3.2\\(3\\):*:*:*:*:*:*:*", "matchCriteriaId": "5D03FB87-63DE-45D0-ABB5-5209547F7166", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "26535762-EE50-4C4F-831E-A0ABFF4ADAF0", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:firewall_services_module:4.0\\(4\\):*:*:*:*:*:*:*", "matchCriteriaId": "ADDB8F07-38B4-498D-9455-9414B69A0626", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*", "matchCriteriaId": "99DE48DF-A309-4A1C-B977-AE81B4EDB589", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*", "matchCriteriaId": "C8D63186-5834-448C-98F2-0C189A11D25D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages."}, {"lang": "es", "value": "Cisco Firewall Services Module (FWSM) 2.x, 3.1 antes de 3.1(16), 3.2 antes de 3.2(13)y 4.0 antes de 4.0(6) para los switches Cisco Catalyst 6500 y los routers Cisco 7600 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (parada de la gesti\u00f3n del tr\u00e1fico) mediante una serie de mensajes ICMP malformados."}], "id": "CVE-2009-0638", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-08-21T11:02:41.640", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/36373"}, {"source": "psirt@cisco.com", "url": "http://securitytracker.com/id?1022747"}, {"source": "psirt@cisco.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml"}, {"source": "psirt@cisco.com", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/36085"}, {"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2009/2329"}, {"source": "psirt@cisco.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/52591"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/36373"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1022747"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/36085"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2009/2329"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/52591"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}