CVE-2009-4913

The IPv6 implementation on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) exposes IP services on the "far side of the box," which might allow remote attackers to bypass intended access restrictions via IPv6 packets, aka Bug ID CSCso58622.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html	Patch
http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html	Patch

Configurations

Configuration 1 (hide)

cpe:2.3:h:cisco:asa_5580:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:10

Type	Values Removed	Values Added
References	~~() http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html - Patch~~	() http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html - Patch

Information

Published : 2010-06-29 18:30

Updated : 2025-04-11 00:51

NVD link : CVE-2009-4913

Mitre link : CVE-2009-4913

CVE.ORG link : CVE-2009-4913

JSON object : View

Products Affected

cisco

asa_5580

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2009-4913", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-06-29T18:30:01.520", "references": [{"url": "http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The IPv6 implementation on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) exposes IP services on the \"far side of the box,\" which might allow remote attackers to bypass intended access restrictions via IPv6 packets, aka Bug ID CSCso58622."}, {"lang": "es", "value": "La implementaci\u00f3n de IPv6 en dispositivos Cisco Adaptive Security Appliances (ASA) de la serie 5580 con versi\u00f3n de software anterior a v8.1(2) muestra servicios IP desde \"la interfaz externa\" (\"far side of the box\"), que podr\u00edan permitir a atacantes remotos evitar rectricciones de acceso establecidas a trav\u00e9s de paquetes IPv6, tambi\u00e9n conocido como Bug ID CSCso58622."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:asa_5580:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73E464BF-EEFB-4D23-9F86-B41B4850223E", "versionEndIncluding": "8.1\\(1\\)"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

5.0 /10