Vulnerability CVE-2012-1350


Published: 2012-08-06

Description:
Cisco IOS 12.3 and 12.4 on Aironet access points allows remote attackers to cause a denial of service (radio-interface input-queue hang) via IAPP 0x3281 packets, aka Bug ID CSCtc12426.

Vendor: Cisco
Product: IOS 
Version:
12.4yg
12.4ye
12.4yd
12.4yb
12.4ya
12.4xz
12.4xy
12.4xw
12.4xv
12.4xt
12.4xr
12.4xq
12.4xp
12.4xn
12.4xm
12.4xl
12.4xk
12.4xj
12.4xg
12.4xf
12.4xe
12.4xd
12.4xc
12.4xb
12.4xa
12.4t
12.4sw
12.4mrb
12.4mra
12.4mr
12.4mdb
12.4mda
12.4md
12.4jx
12.4jmb
12.4jma
12.4jl
12.4jk
12.4jdd
12.4jdc
12.4jda
12.4ja
12.4gc
12.4(9)t
12.4(8)
12.4(7a)
12.4(7)
12.4(6)t1
12.4(6)t
12.4(5b)
12.4(5)
12.4(4)t2
12.4(4)t
12.4(4)mr
12.4(3d)
12.4(3b)
12.4(3a)
12.4(3)t2
12.4(3)
12.4(24)t1
12.4(24)mda
12.4(24)md4
12.4(24)md3
12.4(24)md2
12.4(24)md1
12.4(24)md
12.4(23)
12.4(22)mda
12.4(22)md
12.4(2)xb2
12.4(2)xb
12.4(2)xa
12.4(2)t4
12.4(2)t3
12.4(2)t2
12.4(2)t1
12.4(2)t
12.4(2)mr1
12.4(2)mr
12.4(1c)
12.4(1b)
12.4(15)md
12.4(11)md
12.4(1)
12.4
12.3za
12.3yz
12.3yx
12.3yw
12.3yu
12.3yt
12.3ys
12.3yr
12.3yq
12.3yn
12.3ym
12.3yl
12.3yk
12.3yj
12.3yi
See more versions on NVD

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
http://www.cisco.com/en/US/docs/wireless/access_point/ios/release/notes/12_3_8_JED1rn.html

Related CVE
CVE-2019-1673
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is...
CVE-2019-1671
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an...
CVE-2019-1670
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface of an affected syst...
CVE-2019-1661
A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management inte...
CVE-2019-1678
A vulnerability in Cisco Meeting Server could allow an authenticated, remote attacker to cause a partial denial of service (DoS) to Cisco Meetings application users who are paired with a Session Initiation Protocol (SIP) endpoint. The vulnerability i...
CVE-2019-1677
A vulnerability in Cisco Webex Meetings for Android could allow an unauthenticated, local attacker to perform a cross-site scripting attack against the application. The vulnerability is due to insufficient validation of the application input paramete...
CVE-2019-1675
A vulnerability in the default configuration of the Cisco Aironet Active Sensor could allow an unauthenticated, remote attacker to restart the sensor. The vulnerability is due to a default local account with a static password. The account has privile...
CVE-2019-1669
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured access control policies or cause a denial of service (DoS) condition. The vu...

Copyright 2019, cxsecurity.com

 

Back to Top