Vulnerability CVE-2012-1350
Published: 2012-08-06

Description:
Cisco IOS 12.3 and 12.4 on Aironet access points allows remote attackers to cause a denial of service (radio-interface input-queue hang) via IAPP 0x3281 packets, aka Bug ID CSCtc12426.

Vendor: Cisco
Product: IOS 
Version:
12.4yg
12.4ye
12.4yd
12.4yb
12.4ya
12.4xz
12.4xy
12.4xw
12.4xv
12.4xt
12.4xr
12.4xq
12.4xp
12.4xn
12.4xm
12.4xl
12.4xk
12.4xj
12.4xg
12.4xf
12.4xe
12.4xd
12.4xc
12.4xb
12.4xa
12.4t
12.4sw
12.4mrb
12.4mra
12.4mr
12.4mdb
12.4mda
12.4md
12.4jx
12.4jmb
12.4jma
12.4jl
12.4jk
12.4jdd
12.4jdc
12.4jda
12.4ja
12.4gc
12.4(9)t
12.4(8)
12.4(7a)
12.4(7)
12.4(6)t1
12.4(6)t
12.4(5b)
12.4(5)
12.4(4)t2
12.4(4)t
12.4(4)mr
12.4(3d)
12.4(3b)
12.4(3a)
12.4(3)t2
12.4(3)
12.4(24)t1
12.4(24)mda
12.4(24)md4
12.4(24)md3
12.4(24)md2
12.4(24)md1
12.4(24)md
12.4(23)
12.4(22)mda
12.4(22)md
12.4(2)xb2
12.4(2)xb
12.4(2)xa
12.4(2)t4
12.4(2)t3
12.4(2)t2
12.4(2)t1
12.4(2)t
12.4(2)mr1
12.4(2)mr
12.4(1c)
12.4(1b)
12.4(15)md
12.4(11)md
12.4(1)
12.4
12.3za
12.3yz
12.3yx
12.3yw
12.3yu
12.3yt
12.3ys
12.3yr
12.3yq
12.3yn
12.3ym
12.3yl
12.3yk
12.3yj
12.3yi
See more versions on NVD

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
http://www.cisco.com/en/US/docs/wireless/access_point/ios/release/notes/12_3_8_JED1rn.html

Related CVE
CVE-2019-1970
 A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass the configured file policies on an ...
CVE-2019-1958
 A vulnerability in the web-based management interface of Cisco HyperFlex Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vulnerability is due to insufficient CS...
CVE-2019-1955
 A vulnerability in the Sender Policy Framework (SPF) functionality of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass configured user filters on the device. The vulnerability ...
CVE-2019-1954
 A vulnerability in the web-based management interface of Cisco Webex Meetings Server Software could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. The vulnerability is due to improper input validation of the UR...
CVE-2019-1951
 A vulnerability in the packet filtering features of Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to bypass L3 and L4 traffic filters. The vulnerability is due to improper traffic filtering conditions on an affected device. An...
CVE-2019-1949
 A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affecte...
CVE-2019-1945
 Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated, local attacker to elevate privileges to the root user or load a malicious library file while the tunnel is being estab...
CVE-2019-1944
 Multiple vulnerabilities in the smart tunnel functionality of Cisco Adaptive Security Appliance (ASA) could allow an authenticated, local attacker to elevate privileges to the root user or load a malicious library file while the tunnel is being estab...
Copyright 2019, cxsecurity.com

 

Back to Top