CVE Vulnerabilities

CVE-2009-0637

Published: Mar 27, 2009 | Modified: Aug 25, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.1 HIGH
AV:N/AC:H/Au:S/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The SCP server in Cisco IOS 12.2 through 12.4, when Role-Based CLI Access is enabled, does not enforce the CLI view configuration for file transfers, which allows remote authenticated users with an attached CLI view to (1) read or (2) overwrite arbitrary files via an SCP command.

Affected Software

Name Vendor Start Version End Version
Ios Cisco 12.4(2)t2 12.4(2)t2
Ios Cisco 12.4t 12.4t
Ios Cisco 12.4(2)t4 12.4(2)t4
Ios Cisco 12.2sga 12.2sga
Ios Cisco 12.2xr 12.2xr
Ios Cisco 12.4(6)t 12.4(6)t
Ios Cisco 12.2cz 12.2cz
Ios Cisco 12.2sxf 12.2sxf
Ios Cisco 12.2fy 12.2fy
Ios Cisco 12.2xe 12.2xe
Ios Cisco 12.4(5) 12.4(5)
Ios Cisco 12.2ja 12.2ja
Ios Cisco 12.2sx 12.2sx
Ios Cisco 12.4(5b) 12.4(5b)
Ios Cisco 12.4xj 12.4xj
Ios Cisco 12.2zp 12.2zp
Ios Cisco 12.4(2)mr 12.4(2)mr
Ios Cisco 12.4(3b) 12.4(3b)
Ios Cisco 12.2ca 12.2ca
Ios Cisco 12.4xl 12.4xl
Ios Cisco 12.2bz 12.2bz
Ios Cisco 12.2ys 12.2ys
Ios Cisco 12.4xm 12.4xm
Ios Cisco 12.4(4)mr 12.4(4)mr
Ios Cisco 12.4mr 12.4mr
Ios Cisco 12.2xj 12.2xj
Ios Cisco 12.2srb 12.2srb
Ios Cisco 12.2su 12.2su
Ios Cisco 12.2xh 12.2xh
Ios Cisco 12.2xg 12.2xg
Ios Cisco 12.2ew 12.2ew
Ios Cisco 12.2b 12.2b
Ios Cisco 12.2ixb 12.2ixb
Ios Cisco 12.2svc 12.2svc
Ios Cisco 12.4xt 12.4xt
Ios Cisco 12.4(4)t 12.4(4)t
Ios_xr Cisco 12.4 12.4
Ios Cisco 12.2yn 12.2yn
Ios Cisco 12.2sxa 12.2sxa
Ios Cisco 12.2ey 12.2ey
Ios Cisco 12.2zx 12.2zx
Ios Cisco 12.2xb 12.2xb
Ios Cisco 12.2yf 12.2yf
Ios Cisco 12.2ixf 12.2ixf
Ios Cisco 12.4(3)t2 12.4(3)t2
Ios Cisco 12.2xl 12.2xl
Ios Cisco 12.2ym 12.2ym
Ios Cisco 12.2yw 12.2yw
Ios Cisco 12.2yd 12.2yd
Ios Cisco 12.4(2)t1 12.4(2)t1
Ios Cisco 12.2yb 12.2yb
Ios Cisco 12.2mb 12.2mb
Ios Cisco 12.2dd 12.2dd
Ios Cisco 12.2zh 12.2zh
Ios Cisco 12.2da 12.2da
Ios Cisco 12.2zu 12.2zu
Ios Cisco 12.2yv 12.2yv
Ios Cisco 12.2ixa 12.2ixa
Ios Cisco 12.2sxb 12.2sxb
Ios Cisco 12.2yo 12.2yo
Ios Cisco 12.2xw 12.2xw
Ios Cisco 12.2sca 12.2sca
Ios Cisco 12.4xf 12.4xf
Ios Cisco 12.2t 12.2t
Ios Cisco 12.4(1) 12.4(1)
Ios Cisco 12.2zc 12.2zc
Ios Cisco 12.2sv 12.2sv
Ios Cisco 12.4(2)mr1 12.4(2)mr1
Ios Cisco 12.4(23) 12.4(23)
Ios Cisco 12.2yt 12.2yt
Ios Cisco 12.4jx 12.4jx
Ios Cisco 12.2zya 12.2zya
Ios Cisco 12.4(2)t3 12.4(2)t3
Ios Cisco 12.4xg 12.4xg
Ios Cisco 12.2yl 12.2yl
Ios Cisco 12.2za 12.2za
Ios Cisco 12.2xn 12.2xn
Ios Cisco 12.2ye 12.2ye
Ios Cisco 12.2ez 12.2ez
Ios Cisco 12.4jmb 12.4jmb
Ios Cisco 12.4xv 12.4xv
Ios Cisco 12.4xw 12.4xw
Ios Cisco 12.2sr 12.2sr
Ios Cisco 12.4(2)xb 12.4(2)xb
Ios Cisco 12.2zb 12.2zb
Ios Cisco 12.2yg 12.2yg
Ios Cisco 12.2sva 12.2sva
Ios Cisco 12.2ex 12.2ex
Ios Cisco 12.2svd 12.2svd
Ios Cisco 12.2xu 12.2xu
Ios Cisco 12.2sbc 12.2sbc
Ios Cisco 12.2ixc 12.2ixc
Ios Cisco 12.4(1c) 12.4(1c)
Ios Cisco 12.2yr 12.2yr
Ios Cisco 12.4(1b) 12.4(1b)
Ios Cisco 12.4(3a) 12.4(3a)
Ios Cisco 12.4(4)t2 12.4(4)t2
Ios Cisco 12.4(2)xb2 12.4(2)xb2
Ios Cisco 12.4xd 12.4xd
Ios Cisco 12.4xp 12.4xp
Ios Cisco 12.4(2)t 12.4(2)t
Ios Cisco 12.4(7) 12.4(7)
Ios Cisco 12.2sb 12.2sb
Ios Cisco 12.4jda 12.4jda
Ios Cisco 12.2xm 12.2xm
Ios Cisco 12.4(3d) 12.4(3d)
Ios Cisco 12.2sy 12.2sy
Ios Cisco 12.2xk 12.2xk
Ios Cisco 12.2ixg 12.2ixg
Ios Cisco 12.2zj 12.2zj
Ios Cisco 12.4(6)t1 12.4(6)t1
Ios Cisco 12.4xk 12.4xk
Ios Cisco 12.2zy 12.2zy
Ios Cisco 12.2jk 12.2jk
Ios Cisco 12.2zd 12.2zd
Ios Cisco 12.2cy 12.2cy
Ios Cisco 12.4jk 12.4jk
Ios Cisco 12.4 12.4
Ios Cisco 12.4(8) 12.4(8)
Ios Cisco 12.2so 12.2so
Ios Cisco 12.2tpc 12.2tpc
Ios Cisco 12.2xc 12.2xc
Ios Cisco 12.4(9)t 12.4(9)t
Ios Cisco 12.2ewa 12.2ewa
Ios Cisco 12.4jl 12.4jl
Ios Cisco 12.2bc 12.2bc
Ios Cisco 12.4sw 12.4sw
Ios Cisco 12.2yc 12.2yc
Ios Cisco 12.2ze 12.2ze
Ios Cisco 12.2xs 12.2xs
Ios Cisco 12.2yp 12.2yp
Ios Cisco 12.2bw 12.2bw
Ios Cisco 12.4xa 12.4xa
Ios Cisco 12.2yy 12.2yy
Ios Cisco 12.2fx 12.2fx
Ios Cisco 12.2sz 12.2sz
Ios Cisco 12.2xi 12.2xi
Ios Cisco 12.4(7a) 12.4(7a)
Ios Cisco 12.4xn 12.4xn
Ios Cisco 12.2yu 12.2yu
Ios Cisco 12.2l 12.2l
Ios Cisco 12.4xe 12.4xe
Ios Cisco 12.2dx 12.2dx
Ios Cisco 12.2ixd 12.2ixd
Ios Cisco 12.2xd 12.2xd
Ios Cisco 12.2bx 12.2bx
Ios Cisco 12.2cx 12.2cx
Ios Cisco 12.2zl 12.2zl
Ios Cisco 12.4md 12.4md
Ios Cisco 12.2yq 12.2yq
Ios Cisco 12.4(2)xa 12.4(2)xa
Ios Cisco 12.2xf 12.2xf
Ios Cisco 12.2xq 12.2xq
Ios Cisco 12.2rc 12.2rc
Ios Cisco 12.2zf 12.2zf
Ios Cisco 12.2sra 12.2sra
Ios Cisco 12.2irb 12.2irb
Ios Cisco 12.2sm 12.2sm
Ios Cisco 12.2ya 12.2ya
Ios Cisco 12.4xb 12.4xb
Ios Cisco 12.4ja 12.4ja
Ios Cisco 12.2xv 12.2xv
Ios Cisco 12.2 12.2
Ios Cisco 12.2zg 12.2zg
Ios Cisco 12.4(3) 12.4(3)
Ios Cisco 12.4xy 12.4xy
Ios Cisco 12.4xc 12.4xc
Ios Cisco 12.2sw 12.2sw
Ios Cisco 12.2yk 12.2yk
Ios Cisco 12.2sxd 12.2sxd
Ios Cisco 12.2src 12.2src
Ios Cisco 12.2yz 12.2yz
Ios Cisco 12.2xa 12.2xa
Ios Cisco 12.2ixe 12.2ixe
Ios Cisco 12.2yj 12.2yj
Ios Cisco 12.2sve 12.2sve
Ios Cisco 12.2mc 12.2mc
Ios Cisco 12.2yx 12.2yx
Ios Cisco 12.2xo 12.2xo
Ios Cisco 12.2sxe 12.2sxe
Ios Cisco 12.2by 12.2by
Ios Cisco 12.2yh 12.2yh
Ios Cisco 12.2s 12.2s
Ios Cisco 12.2fz 12.2fz
Ios Cisco 12.2xt 12.2xt
Ios Cisco 12.4jma 12.4jma
Ios Cisco 12.4s 12.4s

References