Lucene search

CiscoCVE-2012-4660

HistoryOct 29, 2012 - 8:55 p.m.

CVE-2012-4660

2012-10-2920:55:01

CWE-119

cisco

web.nvd.nist.gov

cisco

asa

sip

inspection

engine

dos

denial of service

cve-2012-4660

asa 5500

catalyst 6500

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.005

Percentile

76.9%

JSON

The SIP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 before 8.2(5.17), 8.3 before 8.3(2.28), 8.4 before 8.4(2.13), 8.5 before 8.5(1.4), and 8.6 before 8.6(1.5) allows remote attackers to cause a denial of service (device reload) via a crafted SIP media-update packet, aka Bug ID CSCtr63728.

Affected configurations

Nvd

Node

ciscoadaptive_security_appliance_softwareMatch8.2

ciscoadaptive_security_appliance_softwareMatch8.2\(1\)

ciscoadaptive_security_appliance_softwareMatch8.2\(2\)

ciscoadaptive_security_appliance_softwareMatch8.2\(3\)

ciscoadaptive_security_appliance_softwareMatch8.2\(3.9\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4.1\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4.4\)

ciscoadaptive_security_appliance_softwareMatch8.2\(5\)

ciscoadaptive_security_appliance_softwareMatch8.3\(1\)

ciscoadaptive_security_appliance_softwareMatch8.3\(2\)

ciscoadaptive_security_appliance_softwareMatch8.4

ciscoadaptive_security_appliance_softwareMatch8.4\(1\)

ciscoadaptive_security_appliance_softwareMatch8.4\(1.11\)

ciscoadaptive_security_appliance_softwareMatch8.4\(2\)

ciscoadaptive_security_appliance_softwareMatch8.4\(2.11\)

ciscoadaptive_security_appliance_softwareMatch8.5

ciscoadaptive_security_appliance_softwareMatch8.5\(1\)

ciscoadaptive_security_appliance_softwareMatch8.6

ciscoadaptive_security_appliance_softwareMatch8.6\(1\)

AND

cisco5500_series_adaptive_security_appliance

ciscocatalyst_6500

ciscocatalyst_6503-eMatch-

ciscocatalyst_6504-eMatch-

ciscocatalyst_6506-eMatch-

ciscocatalyst_6509-eMatch-

ciscocatalyst_6509-neb-aMatch-

ciscocatalyst_6509-v-eMatch-

ciscocatalyst_6513Match-

ciscocatalyst_6513-eMatch-

VendorProductVersionCPE
ciscoadaptive_security_appliance_software8.2cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(1)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(1\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(2)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(2\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(3)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(3.9)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3.9\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(4)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(4.1)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.1\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(4.4)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.4\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(5)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.3(1)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3\(1\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	adaptive_security_appliance_software	8.2	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:::::::*
cisco	adaptive_security_appliance_software	8.2(1)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(1\):::::::*
cisco	adaptive_security_appliance_software	8.2(2)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(2\):::::::*
cisco	adaptive_security_appliance_software	8.2(3)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3\):::::::*
cisco	adaptive_security_appliance_software	8.2(3.9)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3.9\):::::::*
cisco	adaptive_security_appliance_software	8.2(4)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4\):::::::*
cisco	adaptive_security_appliance_software	8.2(4.1)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.1\):::::::*
cisco	adaptive_security_appliance_software	8.2(4.4)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.4\):::::::*
cisco	adaptive_security_appliance_software	8.2(5)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5\):::::::*
cisco	adaptive_security_appliance_software	8.3(1)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3\(1\):::::::*

Rows per page:

1-10 of 301

References

osvdb.org/86144

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-asa

www.securityfocus.com/bid/55864

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.005

Percentile

76.9%

JSON

Related for CVE-2012-4660