CVE-2009-2873

Name of the Vulnerable Software and Affected Versions: Cisco IOS versions 12.0 through 12.4

Description: The issue allows remote attackers to cause a denial of service (device reload) via malformed packets when IP-based tunnels and the Cisco Express Forwarding feature are enabled. Cisco devices running affected versions of Cisco IOS Software are vulnerable to a denial of service (DoS) attack if configured for IP tunnels and Cisco Express Forwarding.

Recommendations: For versions 12.0 through 12.4, update to a version that addresses this vulnerability, as software updates have been released by Cisco to resolve the issue. As a temporary workaround, consider disabling the Cisco Express Forwarding feature or restricting the use of IP-based tunnels until a patch is applied.