Vulnerability Description
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8a) allows remote authenticated users to execute arbitrary operating-system commands through a command line interface (CLI).
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Application Control Engine Module | <= 1.1 |
| Cisco | Catalyst 6500 | All versions |
| Cisco | Catalyst 7600 | All versions |
| Cisco | Ace 4710 | All versions |
References
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.sPatchVendor Advisory
- http://www.securityfocus.com/bid/33900
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.sPatchVendor Advisory
- http://www.securityfocus.com/bid/33900
FAQ
What is CVE-2009-0622?
CVE-2009-0622 is a vulnerability with a CVSS score of 9.0 (HIGH). Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8a...
How severe is CVE-2009-0622?
CVE-2009-0622 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0622?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Application Control Engine Module, Cisco Catalyst 6500, Cisco Catalyst 7600, Cisco Ace 4710.