Lucene search

CiscoCISCO-SA-20120926-IOS-IPS

HistorySep 26, 2012 - 4:00 p.m.

Cisco IOS Software Intrusion Prevention System Denial of Service Vulnerability

2012-09-2616:00:00

tools.cisco.com

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

EPSS

0.013

Percentile

85.8%

JSON

Cisco IOS Software contains a vulnerability in the Intrusion Prevention System (IPS) feature that could allow an unauthenticated, remote attacker to cause a reload of an affected device if specific Cisco IOS IPS configurations exist.

Cisco has released software updates that address this vulnerability.

Workarounds that mitigate this vulnerability are available.

This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-ios-ips[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-ios-ips”]

Note: The September 26, 2012, Cisco IOS Software Security Advisory bundled publication includes nine Cisco Security Advisories. Eight of the advisories address vulnerabilities in Cisco IOS Software, and one advisory addresses a vulnerability in Cisco Unified Communications Manager. Each Cisco IOS Software Security Advisory lists the Cisco IOS Software releases that correct the vulnerability or vulnerabilities detailed in the advisory as well as the Cisco IOS Software releases that correct all Cisco IOS Software vulnerabilities in the September 2012 bundled publication.

Individual publication links are in “Cisco Event Response: Semi-Annual Cisco IOS Software Security Advisory Bundled Publication” at the following link:

http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep12.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep12.html”]

Affected configurations

Vulners

Node

ciscoiosMatch12.3xi

ciscoiosMatch12.3yf

ciscoiosMatch12.3ja

ciscoiosMatch12.3jk

ciscoiosMatch12.4mr

ciscoiosMatch12.4t

ciscoiosMatch12.3jx

ciscoiosMatch12.4xj

ciscoiosMatch12.4xk

ciscoiosMatch12.4xv

ciscoiosMatch12.4xw

ciscoiosMatch12.4xf

ciscoiosMatch12.4xy

ciscoiosMatch12.4xz

ciscoiosMatch15.0m

ciscoiosMatch15.0xa

ciscoiosMatch15.1t

ciscoiosMatch15.1xb

ciscoiosMatch12.3m

ciscoiosMatch15.1m

ciscoiosMatch15.1gc

ciscoiosMatch15.2gc

ciscoiosMatch12.3\(7\)xi3a

ciscoiosMatch12.3\(11\)yf2

ciscoiosMatch12.3\(2\)ja3

ciscoiosMatch12.3\(2\)ja4

ciscoiosMatch12.3\(11\)ja2

ciscoiosMatch12.3\(8\)jk

ciscoiosMatch12.4\(16\)mr1

ciscoiosMatch12.4\(19\)mr

ciscoiosMatch12.4\(16\)mr2

ciscoiosMatch12.4\(11\)t

ciscoiosMatch12.4\(15\)t

ciscoiosMatch12.4\(20\)t

ciscoiosMatch12.4\(24\)t

ciscoiosMatch12.4\(24\)t3

ciscoiosMatch12.4\(20\)t1

ciscoiosMatch12.4\(22\)t1

ciscoiosMatch12.4\(15\)t9

ciscoiosMatch12.4\(11\)t4

ciscoiosMatch12.4\(15\)t8

ciscoiosMatch12.4\(15\)t15

ciscoiosMatch12.4\(24\)t5

ciscoiosMatch12.4\(15\)t2

ciscoiosMatch12.4\(15\)t12

ciscoiosMatch12.4\(24\)t4

ciscoiosMatch12.4\(20\)t3

ciscoiosMatch12.4\(22\)t

ciscoiosMatch12.4\(15\)t6a

ciscoiosMatch12.4\(20\)t6

ciscoiosMatch12.4\(15\)t13

ciscoiosMatch12.4\(15\)t3

ciscoiosMatch12.4\(24\)t2

ciscoiosMatch12.4\(22\)t5

ciscoiosMatch12.4\(15\)t10

ciscoiosMatch12.4\(22\)t4

ciscoiosMatch12.4\(20\)t5

ciscoiosMatch12.4\(15\)t4

ciscoiosMatch12.4\(24\)t1

ciscoiosMatch12.4\(24\)t7

ciscoiosMatch12.4\(22\)t3

ciscoiosMatch12.4\(20\)t9

ciscoiosMatch12.4\(24\)t6

ciscoiosMatch12.4\(15\)t13b

ciscoiosMatch12.4\(20\)t5a

ciscoiosMatch12.4\(15\)t5

ciscoiosMatch12.4\(20\)t2

ciscoiosMatch12.4\(11\)t1

ciscoiosMatch12.4\(15\)t11

ciscoiosMatch12.4\(15\)t7

ciscoiosMatch12.4\(11\)t2

ciscoiosMatch12.4\(15\)t14

ciscoiosMatch12.4\(11\)t3

ciscoiosMatch12.4\(15\)t6

ciscoiosMatch12.4\(15\)t16

ciscoiosMatch12.4\(15\)t1

ciscoiosMatch12.4\(22\)t2

ciscoiosMatch12.4\(20\)t4

ciscoiosMatch12.4\(15\)t17

ciscoiosMatch12.3\(11\)jx

ciscoiosMatch12.3\(7\)jx9

ciscoiosMatch12.3\(11\)jx1

ciscoiosMatch12.4\(11\)xj

ciscoiosMatch12.4\(11\)xj1

ciscoiosMatch12.4\(11\)xj3

ciscoiosMatch12.4\(11\)xj6

ciscoiosMatch12.4\(11\)xj2

ciscoiosMatch12.4\(11\)xj5

ciscoiosMatch12.4\(11\)xj4

ciscoiosMatch12.4\(14\)xk

ciscoiosMatch12.4\(11\)xv

ciscoiosMatch12.4\(11\)xv1

ciscoiosMatch12.4\(11\)xw

ciscoiosMatch12.4\(11\)xw3

ciscoiosMatch12.4\(11\)xw7

ciscoiosMatch12.4\(11\)xw10

ciscoiosMatch12.4\(11\)xw8

ciscoiosMatch12.4\(11\)xw9

ciscoiosMatch12.4\(11\)xw6

ciscoiosMatch12.4\(11\)xw4

ciscoiosMatch12.4\(11\)xw1

ciscoiosMatch12.4\(11\)xw5

ciscoiosMatch12.4\(11\)xw2

ciscoiosMatch12.4\(15\)xf

ciscoiosMatch12.4\(15\)xy4

ciscoiosMatch12.4\(15\)xy5

ciscoiosMatch12.4\(15\)xy1

ciscoiosMatch12.4\(15\)xy

ciscoiosMatch12.4\(15\)xy2

ciscoiosMatch12.4\(15\)xy3

ciscoiosMatch12.4\(15\)xz

ciscoiosMatch12.4\(15\)xz2

ciscoiosMatch12.4\(15\)xz1

ciscoiosMatch15.0\(1\)m1

ciscoiosMatch15.0\(1\)m5

ciscoiosMatch15.0\(1\)m4

ciscoiosMatch15.0\(1\)m3

ciscoiosMatch15.0\(1\)m2

ciscoiosMatch15.0\(1\)m6

ciscoiosMatch15.0\(1\)m

ciscoiosMatch15.0\(1\)m7

ciscoiosMatch15.0\(1\)m8

ciscoiosMatch15.0\(1\)m6a

ciscoiosMatch15.0\(1\)xa2

ciscoiosMatch15.0\(1\)xa4

ciscoiosMatch15.0\(1\)xa1

ciscoiosMatch15.0\(1\)xa3

ciscoiosMatch15.0\(1\)xa

ciscoiosMatch15.0\(1\)xa5

ciscoiosMatch15.1\(2\)t

ciscoiosMatch15.1\(1\)t4

ciscoiosMatch15.1\(3\)t2

ciscoiosMatch15.1\(1\)t1

ciscoiosMatch15.1\(2\)t0a

ciscoiosMatch15.1\(3\)t3

ciscoiosMatch15.1\(1\)t3

ciscoiosMatch15.1\(2\)t3

ciscoiosMatch15.1\(2\)t4

ciscoiosMatch15.1\(1\)t2

ciscoiosMatch15.1\(3\)t

ciscoiosMatch15.1\(2\)t2a

ciscoiosMatch15.1\(3\)t1

ciscoiosMatch15.1\(1\)t

ciscoiosMatch15.1\(2\)t2

ciscoiosMatch15.1\(2\)t1

ciscoiosMatch15.1\(2\)t5

ciscoiosMatch15.1\(3\)t4

ciscoiosMatch15.1\(1\)t5

ciscoiosMatch15.1\(1\)xb

ciscoiosMatch15.1\(1\)xb3

ciscoiosMatch15.1\(1\)xb1

ciscoiosMatch15.1\(1\)xb2

ciscoiosMatch15.1\(4\)xb4

ciscoiosMatch15.1\(4\)xb5

ciscoiosMatch15.1\(4\)xb6

ciscoiosMatch15.1\(4\)xb5a

ciscoiosMatch15.1\(4\)xb7

ciscoiosMatch15.1\(4\)xb8

ciscoiosMatch15.1\(4\)xb8a

ciscoiosMatch12.3\(9\)m0

ciscoiosMatch12.3\(9\)m1

ciscoiosMatch15.1\(4\)m3

ciscoiosMatch15.1\(4\)m

ciscoiosMatch15.1\(4\)m1

ciscoiosMatch15.1\(4\)m2

ciscoiosMatch15.1\(4\)m4

ciscoiosMatch15.1\(4\)m0a

ciscoiosMatch15.1\(4\)m0b

ciscoiosMatch15.1\(4\)m3a

ciscoiosMatch15.1\(2\)gc

ciscoiosMatch15.1\(2\)gc1

ciscoiosMatch15.1\(2\)gc2

ciscoiosMatch15.2\(1\)gc

ciscoiosMatch15.2\(1\)gc1

ciscoiosMatch15.2\(1\)gc2

ciscoiosMatch15.2\(2\)gc

VendorProductVersionCPE
ciscoios12.3xicpe:2.3:o:cisco:ios:12.3xi:*:*:*:*:*:*:*
ciscoios12.3yfcpe:2.3:o:cisco:ios:12.3yf:*:*:*:*:*:*:*
ciscoios12.3jacpe:2.3:o:cisco:ios:12.3ja:*:*:*:*:*:*:*
ciscoios12.3jkcpe:2.3:o:cisco:ios:12.3jk:*:*:*:*:*:*:*
ciscoios12.4mrcpe:2.3:o:cisco:ios:12.4mr:*:*:*:*:*:*:*
ciscoios12.4tcpe:2.3:o:cisco:ios:12.4t:*:*:*:*:*:*:*
ciscoios12.3jxcpe:2.3:o:cisco:ios:12.3jx:*:*:*:*:*:*:*
ciscoios12.4xjcpe:2.3:o:cisco:ios:12.4xj:*:*:*:*:*:*:*
ciscoios12.4xkcpe:2.3:o:cisco:ios:12.4xk:*:*:*:*:*:*:*
ciscoios12.4xvcpe:2.3:o:cisco:ios:12.4xv:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.3xi	cpe:2.3:o:cisco:ios:12.3xi:::::::*
cisco	ios	12.3yf	cpe:2.3:o:cisco:ios:12.3yf:::::::*
cisco	ios	12.3ja	cpe:2.3:o:cisco:ios:12.3ja:::::::*
cisco	ios	12.3jk	cpe:2.3:o:cisco:ios:12.3jk:::::::*
cisco	ios	12.4mr	cpe:2.3:o:cisco:ios:12.4mr:::::::*
cisco	ios	12.4t	cpe:2.3:o:cisco:ios:12.4t:::::::*
cisco	ios	12.3jx	cpe:2.3:o:cisco:ios:12.3jx:::::::*
cisco	ios	12.4xj	cpe:2.3:o:cisco:ios:12.4xj:::::::*
cisco	ios	12.4xk	cpe:2.3:o:cisco:ios:12.4xk:::::::*
cisco	ios	12.4xv	cpe:2.3:o:cisco:ios:12.4xv:::::::*