CVE-2009-0622

Published: Feb 26, 2009Modified: Apr 23, 2026

9.0

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 8.0 / Impact: 10.0

Source: NVD

Description

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8a) allows remote authenticated users to execute arbitrary operating-system commands through a command line interface (CLI).

Affected (3)

Products: Cisco: Application Control Engine Module, Ace 4710

2 products

Application Control Engine Module

Configuration A

2 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Cisco Application Control Engine Module	Up to 1.1
Cisco Application Control Engine Module	Version 1.0

Running on/with	Platform Versions
Cisco Catalyst 6500	All versions
Cisco Catalyst 7600	All versions

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Cisco Ace 4710	All versions

References (4)

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

Source: psirt@cisco.com

PatchVendor Advisory

http://www.securityfocus.com/bid/33900

Source: psirt@cisco.com

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/33900

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.