VDB
CVE-2009-3563
CVE-2009-3563
PUBLISHED
Es existiert eine Schwachstelle in mehreren Moxa Switches. Der Fehler besteht aufgrund einer unkontrollierten Rekursion, die zu einem übermäßigen CPU- und Protokollverbrauch führt. Ein entfernter, nicht authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
EPSS 81.11% · 99.2th percentile
Risk Scores
EPSS Score
81.11%
99.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Moxa | Moxa Switch PT-7828 Series <= 3.9 | |
| Moxa | Moxa Switch PT-G7828 Series <= 6.2 | |
| Open Source | Open Source ntp | |
| Moxa | Moxa Switch MDS-G4012 <= 1.2 | |
| Moxa | Moxa Switch PT-7728 Series <= 3.8 | |
| Moxa | Moxa Switch PT-508 Series <= 3.8 |
Exploit Intelligence
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- cve-2010-0426 (github-poc)
…and 28 more exploits
Timeline
- Dec 8, 2009 CVE Published
- Dec 8, 2009 PoC Published
- Jul 30, 2010 PoC Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1747.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1747 advisory
- https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230307-multiple-switch-series-affected-by-ntp-denial-of-service-vulnerability advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0672.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0672 advisory
- https://kb.cert.org/vuls/id/417980 advisory