Lucene search

[email protected]NVD:CVE-2012-3901

HistorySep 16, 2012 - 10:34 a.m.

CVE-2012-3901

2012-09-1610:34:50

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

55.5%

JSON

The updateTime function in sensorApp on Cisco IPS 4200 series sensors 7.0 and 7.1 allows remote attackers to cause a denial of service (process crash and traffic-inspection outage) via network traffic, aka Bug ID CSCta96144.

Affected configurations

Nvd

Node

ciscointrusion_prevention_systemMatch7.0

ciscointrusion_prevention_systemMatch7.1

AND

ciscoips_4240

ciscoips_4250_sx

ciscoips_4255

ciscoips_4260

ciscoips_4270-20

VendorProductVersionCPE
ciscointrusion_prevention_system7.0cpe:2.3:a:cisco:intrusion_prevention_system:7.0:*:*:*:*:*:*:*
ciscointrusion_prevention_system7.1cpe:2.3:a:cisco:intrusion_prevention_system:7.1:*:*:*:*:*:*:*
ciscoips_4240*cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*
ciscoips_4250_sx*cpe:2.3:h:cisco:ips_4250_sx:*:*:*:*:*:*:*:*
ciscoips_4255*cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*
ciscoips_4260*cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*
ciscoips_4270-20*cpe:2.3:h:cisco:ips_4270-20:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	intrusion_prevention_system	7.0	cpe:2.3:a:cisco:intrusion_prevention_system:7.0:::::::*
cisco	intrusion_prevention_system	7.1	cpe:2.3:a:cisco:intrusion_prevention_system:7.1:::::::*
cisco	ips_4240	*	cpe:2.3:h:cisco:ips_4240::::::::
cisco	ips_4250_sx	*	cpe:2.3:h:cisco:ips_4250_sx::::::::
cisco	ips_4255	*	cpe:2.3:h:cisco:ips_4255::::::::
cisco	ips_4260	*	cpe:2.3:h:cisco:ips_4260::::::::
cisco	ips_4270-20	*	cpe:2.3:h:cisco:ips_4270-20::::::::

References

www.cisco.com/en/US/docs/security/ips/7.0/release/notes/22789_01.html

exchange.xforce.ibmcloud.com/vulnerabilities/78870

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

55.5%

JSON

Related for NVD:CVE-2012-3901

cve1 cvelist1 prion1