Vulnerability CVE-2012-1350
Published: 2012-08-06

Description:
Cisco IOS 12.3 and 12.4 on Aironet access points allows remote attackers to cause a denial of service (radio-interface input-queue hang) via IAPP 0x3281 packets, aka Bug ID CSCtc12426.

Vendor: Cisco
Product: IOS 
Version:
12.4yg
12.4ye
12.4yd
12.4yb
12.4ya
12.4xz
12.4xy
12.4xw
12.4xv
12.4xt
12.4xr
12.4xq
12.4xp
12.4xn
12.4xm
12.4xl
12.4xk
12.4xj
12.4xg
12.4xf
12.4xe
12.4xd
12.4xc
12.4xb
12.4xa
12.4t
12.4sw
12.4mrb
12.4mra
12.4mr
12.4mdb
12.4mda
12.4md
12.4jx
12.4jmb
12.4jma
12.4jl
12.4jk
12.4jdd
12.4jdc
12.4jda
12.4ja
12.4gc
12.4(9)t
12.4(8)
12.4(7a)
12.4(7)
12.4(6)t1
12.4(6)t
12.4(5b)
12.4(5)
12.4(4)t2
12.4(4)t
12.4(4)mr
12.4(3d)
12.4(3b)
12.4(3a)
12.4(3)t2
12.4(3)
12.4(24)t1
12.4(24)mda
12.4(24)md4
12.4(24)md3
12.4(24)md2
12.4(24)md1
12.4(24)md
12.4(23)
12.4(22)mda
12.4(22)md
12.4(2)xb2
12.4(2)xb
12.4(2)xa
12.4(2)t4
12.4(2)t3
12.4(2)t2
12.4(2)t1
12.4(2)t
12.4(2)mr1
12.4(2)mr
12.4(1c)
12.4(1b)
12.4(15)md
12.4(11)md
12.4(1)
12.4
12.3za
12.3yz
12.3yx
12.3yw
12.3yu
12.3yt
12.3ys
12.3yr
12.3yq
12.3yn
12.3ym
12.3yl
12.3yk
12.3yj
12.3yi
See more versions on NVD

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
http://www.cisco.com/en/US/docs/wireless/access_point/ios/release/notes/12_3_8_JED1rn.html

Related CVE
CVE-2019-1882
 A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. The vulnerability is due to improper validation of content submitted to the affected application....
CVE-2019-1881
 A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device...
CVE-2019-1872
 A vulnerability in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway Series software could allow an unauthenticated, remote attacker to cause an affected system to send arbitrary network requests. The vulnerability is due to im...
CVE-2019-1870
 A vulnerability in the web-based management interface of Cisco Enterprise Chat and Email (ECE) Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface ...
CVE-2019-1868
 A vulnerability in the web-based management interface of Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to access sensitive system information. The vulnerability is due to improper access control to files within the web-b...
CVE-2019-1845
 A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, Cisco TelePresence Video Communication Server (VCS), and Cisco Expressway Series could allow an unauthenticated, ...
CVE-2019-1842
 A vulnerability in the Secure Shell (SSH) authentication function of Cisco IOS XR Software could allow an authenticated, remote attacker to successfully log in to an affected device using two distinct usernames. The vulnerability is due to a logic er...
CVE-2019-1780
 A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying operating system of an affected device with elevate...
Copyright 2019, cxsecurity.com

 

Back to Top