Lucene search

CiscoCISCO-SA-20120926-NAT

HistorySep 26, 2012 - 4:00 p.m.

Cisco IOS Software Network Address Translation Vulnerabilities

2012-09-2616:00:00

tools.cisco.com

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.006

Percentile

77.8%

JSON

The Cisco IOS Software Network Address Translation (NAT) feature contains two denial of service (DoS) vulnerabilities in the translation of IP packets.

The vulnerabilities are caused when packets in transit on the vulnerable device require translation.

Cisco has released software updates that address these vulnerabilities.
This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-nat[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-nat”]

Note: The September 26, 2012, Cisco IOS Software Security Advisory bundled publication includes nine Cisco Security Advisories. Eight of the advisories address vulnerabilities in Cisco IOS Software, and one advisory addresses a vulnerability in Cisco Unified Communications Manager. Each Cisco IOS Software Security Advisory lists the Cisco IOS Software releases that correct the vulnerability or vulnerabilities detailed in the advisory as well as the Cisco IOS Software releases that correct all Cisco IOS Software vulnerabilities in the September 2012 bundled publication.

Individual publication links are in “Cisco Event Response: Semi-Annual Cisco IOS Software Security Advisory Bundled Publication” at the following link:

http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep12.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep12.html”]

Affected configurations

Vulners

Node

ciscoiosMatch12.4

ciscoiosMatch12.4t

ciscoiosMatch12.4md

ciscoiosMatch12.2sxh

ciscoiosMatch12.2sxi

ciscoiosMatch12.4mda

ciscoiosMatch12.4yg

ciscoiosMatch15.0m

ciscoiosMatch15.0xa

ciscoiosMatch15.1t

ciscoiosMatch15.1xb

ciscoiosMatch12.4m

ciscoiosMatch15.1m

ciscoiosMatch15.1gc

ciscoiosMatch12.2sxj

ciscoiosMatch12.4mdb

ciscoiosMatch15.2gc

ciscoiosMatch12.4\(25e\)

ciscoiosMatch12.4\(23b\)

ciscoiosMatch12.4\(25a\)

ciscoiosMatch12.4\(23d\)

ciscoiosMatch12.4\(23e\)

ciscoiosMatch12.4\(25\)

ciscoiosMatch12.4\(25c\)

ciscoiosMatch12.4\(25b\)

ciscoiosMatch12.4\(23a\)

ciscoiosMatch12.4\(25d\)

ciscoiosMatch12.4\(23c\)

ciscoiosMatch12.4\(25f\)

ciscoiosMatch12.4\(24\)t3

ciscoiosMatch12.4\(15\)t15

ciscoiosMatch12.4\(24\)t5

ciscoiosMatch12.4\(24\)t4

ciscoiosMatch12.4\(15\)t13

ciscoiosMatch12.4\(24\)t2

ciscoiosMatch12.4\(24\)t1

ciscoiosMatch12.4\(24\)t6

ciscoiosMatch12.4\(15\)t13b

ciscoiosMatch12.4\(15\)t14

ciscoiosMatch12.4\(15\)t16

ciscoiosMatch12.4\(24\)t4a

ciscoiosMatch12.4\(24\)t4b

ciscoiosMatch12.4\(24\)t3e

ciscoiosMatch12.4\(24\)t4c

ciscoiosMatch12.4\(15\)t17

ciscoiosMatch12.4\(24\)t4d

ciscoiosMatch12.4\(24\)t4e

ciscoiosMatch12.4\(24\)t3f

ciscoiosMatch12.4\(24\)t4f

ciscoiosMatch12.4\(24\)md1

ciscoiosMatch12.4\(24\)md

ciscoiosMatch12.4\(24\)md3

ciscoiosMatch12.4\(24\)md2

ciscoiosMatch12.4\(24\)md5

ciscoiosMatch12.4\(24\)md4

ciscoiosMatch12.4\(24\)md6

ciscoiosMatch12.2\(33\)sxh8a

ciscoiosMatch12.2\(33\)sxh8

ciscoiosMatch12.2\(33\)sxh7w

ciscoiosMatch12.2\(33\)sxh8b

ciscoiosMatch12.2\(33\)sxi5

ciscoiosMatch12.2\(33\)sxi6

ciscoiosMatch12.2\(33\)sxi5a

ciscoiosMatch12.4\(24\)mda5

ciscoiosMatch12.4\(24\)mda3

ciscoiosMatch12.4\(24\)mda4

ciscoiosMatch12.4\(24\)mda1

ciscoiosMatch12.4\(24\)mda2

ciscoiosMatch12.4\(24\)mda6

ciscoiosMatch12.4\(24\)mda7

ciscoiosMatch12.4\(24\)mda8

ciscoiosMatch12.4\(24\)mda10

ciscoiosMatch12.4\(24\)mda9

ciscoiosMatch12.4\(24\)yg3

ciscoiosMatch12.4\(24\)yg4

ciscoiosMatch12.4\(24\)yg1

ciscoiosMatch12.4\(24\)yg2

ciscoiosMatch15.0\(1\)m1

ciscoiosMatch15.0\(1\)m5

ciscoiosMatch15.0\(1\)m4

ciscoiosMatch15.0\(1\)m3

ciscoiosMatch15.0\(1\)m2

ciscoiosMatch15.0\(1\)m6

ciscoiosMatch15.0\(1\)m

ciscoiosMatch15.0\(1\)m7

ciscoiosMatch15.0\(1\)m6a

ciscoiosMatch15.0\(1\)xa2

ciscoiosMatch15.0\(1\)xa4

ciscoiosMatch15.0\(1\)xa1

ciscoiosMatch15.0\(1\)xa3

ciscoiosMatch15.0\(1\)xa

ciscoiosMatch15.0\(1\)xa5

ciscoiosMatch15.1\(2\)t

ciscoiosMatch15.1\(1\)t4

ciscoiosMatch15.1\(3\)t2

ciscoiosMatch15.1\(1\)t1

ciscoiosMatch15.1\(2\)t0a

ciscoiosMatch15.1\(1\)t3

ciscoiosMatch15.1\(2\)t3

ciscoiosMatch15.1\(2\)t4

ciscoiosMatch15.1\(1\)t2

ciscoiosMatch15.1\(3\)t

ciscoiosMatch15.1\(2\)t2a

ciscoiosMatch15.1\(3\)t1

ciscoiosMatch15.1\(1\)t

ciscoiosMatch15.1\(2\)t2

ciscoiosMatch15.1\(2\)t1

ciscoiosMatch15.1\(1\)t5

ciscoiosMatch15.1\(1\)xb

ciscoiosMatch15.1\(1\)xb3

ciscoiosMatch15.1\(1\)xb1

ciscoiosMatch15.1\(1\)xb2

ciscoiosMatch15.1\(4\)xb4

ciscoiosMatch15.1\(4\)xb5

ciscoiosMatch15.1\(4\)xb6

ciscoiosMatch15.1\(4\)xb5a

ciscoiosMatch12.4\(23b\)m1

ciscoiosMatch15.1\(4\)m

ciscoiosMatch15.1\(4\)m1

ciscoiosMatch15.1\(4\)m2

ciscoiosMatch15.1\(4\)m0a

ciscoiosMatch15.1\(4\)m0b

ciscoiosMatch15.1\(2\)gc

ciscoiosMatch15.1\(2\)gc1

ciscoiosMatch12.2\(33\)sxj

ciscoiosMatch12.4\(24\)mdb1

ciscoiosMatch12.4\(24\)mdb3

ciscoiosMatch12.4\(24\)mdb4

ciscoiosMatch12.4\(24\)mdb5

ciscoiosMatch12.4\(24\)mdb6

ciscoiosMatch12.4\(24\)mdb7

ciscoiosMatch12.4\(24\)mdb5a

ciscoiosMatch12.4\(24\)mdb8

ciscoiosMatch12.4\(24\)mdb9

ciscoiosMatch15.2\(1\)gc

ciscoiosMatch15.2\(1\)gc1

ciscoiosMatch15.2\(1\)gc2

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-nat

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.006

Percentile

77.8%

JSON

Related for CISCO-SA-20120926-NAT