Lucene search

CiscoCVE-2011-4016

HistoryMay 02, 2012 - 10:09 a.m.

CVE-2011-4016

2012-05-0210:09:21

CWE-20

CWE-284

cisco

web.nvd.nist.gov

cve-2011-4016

cisco ios

ppp

pta

l2tp

denial of service

nvd

csctf71673

CVSS2

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

48.1%

JSON

The PPP implementation in Cisco IOS 12.2 and 15.0 through 15.2, when Point-to-Point Termination and Aggregation (PTA) and L2TP are used, allows remote attackers to cause a denial of service (device crash) via crafted network traffic, aka Bug ID CSCtf71673.

Affected configurations

Nvd

Node

ciscoiosMatch12.2

ciscoiosMatch15.0

ciscoiosMatch15.1

ciscoiosMatch15.2

VendorProductVersionCPE
ciscoios12.2cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
ciscoios15.0cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*
ciscoios15.1cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*
ciscoios15.2cpe:2.3:o:cisco:ios:15.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.2	cpe:2.3:o:cisco:ios:12.2:::::::*
cisco	ios	15.0	cpe:2.3:o:cisco:ios:15.0:::::::*
cisco	ios	15.1	cpe:2.3:o:cisco:ios:15.1:::::::*
cisco	ios	15.2	cpe:2.3:o:cisco:ios:15.2:::::::*

References

www.cisco.com/en/US/docs/ios/15_1/release/notes/151-2TCAVS.html

www.securitytracker.com/id?1027005

CVSS2

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

48.1%

JSON

Related for CVE-2011-4016