Lucene search

CiscoCVE-2012-3062

HistoryApr 23, 2014 - 11:52 a.m.

CVE-2012-3062

2014-04-2311:52:59

CWE-20

cisco

web.nvd.nist.gov

cisco

ios

mld snooping

denial of service

cpu consumption

device crash

ipv6

csctr88193

cve-2012-3062

nvd

CVSS2

5.7

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

High

EPSS

0.002

Percentile

58.7%

JSON

Cisco IOS before 15.1(1)SY, when Multicast Listener Discovery (MLD) snooping is enabled, allows remote attackers to cause a denial of service (CPU consumption or device crash) via MLD packets on a network that contains many IPv6 hosts, aka Bug ID CSCtr88193.

Affected configurations

Nvd

Node

ciscoiosMatch15.1

VendorProductVersionCPE
ciscoios15.1cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	15.1	cpe:2.3:o:cisco:ios:15.1:::::::*

References

www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/15-1SY/release_notes.pdf

CVSS2

5.7

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

High

EPSS

0.002

Percentile

58.7%

JSON

Related for CVE-2012-3062