CVE-2009-0636
UnknownEPSS 2.94%
Last modified
CVE-2009-0636 is a vulnerability of currently unknown severity. Unspecified vulnerability in Cisco IOS 12.0 through 12.4, when SIP voice services are enabled, allows remote attackers to cause a denial of service (device crash) via a valid SIP message.. EPSS estimates a 2.94% chance of exploitation in the next 30 days.
Description
Unspecified vulnerability in Cisco IOS 12.0 through 12.4, when SIP voice services are enabled, allows remote attackers to cause a denial of service (device crash) via a valid SIP message.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 12.0 |
| Cisco | Ios | 12.0da |
| Cisco | Ios | 12.0db |
| Cisco | Ios | 12.0dc |
| Cisco | Ios | 12.0s |
| Cisco | Ios | 12.0sc |
| Cisco | Ios | 12.0sl |
| Cisco | Ios | 12.0sp |
| Cisco | Ios | 12.0st |
| Cisco | Ios | 12.0sx |
| Cisco | Ios | 12.0sy |
| Cisco | Ios | 12.0sz |
| Cisco | Ios | 12.0t |
| Cisco | Ios | 12.0w |
| Cisco | Ios | 12.0wc |
| Cisco | Ios | 12.0wt |
| Cisco | Ios | 12.0wx |
| Cisco | Ios | 12.0xa |
| Cisco | Ios | 12.0xb |
| Cisco | Ios | 12.0xc |
| Cisco | Ios | 12.0xd |
| Cisco | Ios | 12.0xe |
| Cisco | Ios | 12.0xg |
| Cisco | Ios | 12.0xh |
| Cisco | Ios | 12.0xi |
| Cisco | Ios | 12.0xj |
| Cisco | Ios | 12.0xk |
| Cisco | Ios | 12.0xl |
| Cisco | Ios | 12.0xm |
| Cisco | Ios | 12.0xn |
| Cisco | Ios | 12.0xq |
| Cisco | Ios | 12.0xr |
| Cisco | Ios | 12.0xs |
| Cisco | Ios | 12.0xt |
| Cisco | Ios | 12.0xv |
| Cisco | Ios | 12.1 |
| Cisco | Ios | 12.1aa |
| Cisco | Ios | 12.1ax |
| Cisco | Ios | 12.1ay |
| Cisco | Ios | 12.1az |
| Cisco | Ios | 12.1cx |
| Cisco | Ios | 12.1da |
| Cisco | Ios | 12.1db |
| Cisco | Ios | 12.1dc |
| Cisco | Ios | 12.1e |
| Cisco | Ios | 12.1ea |
| Cisco | Ios | 12.1eb |
| Cisco | Ios | 12.1ec |
| Cisco | Ios | 12.1eo |
| Cisco | Ios | 12.1eu |
Showing 50 of 310 affected configurations. See NVD for the full list.
References
- http://secunia.com/advisories/34438Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90469.shtmlPatch, Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904c0.shtmlPatch, Vendor Advisory
- http://www.vupen.com/english/advisories/2009/0851Vendor Advisory
- http://secunia.com/advisories/34438Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90469.shtmlPatch, Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904c0.shtmlPatch, Vendor Advisory
- http://www.vupen.com/english/advisories/2009/0851Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2009-0636?
Unspecified vulnerability in Cisco IOS 12.0 through 12.4, when SIP voice services are enabled, allows remote attackers to cause a denial of service (device crash) via a valid SIP message.
How severe is CVE-2009-0636?
Severity scoring for CVE-2009-0636 is pending analysis. The EPSS model estimates a 2.94% probability of exploitation in the next 30 days.
How do I fix CVE-2009-0636?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2009-0636?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST