Vulnerability CVE-2012-1350
Published: 2012-08-06

Description:
Cisco IOS 12.3 and 12.4 on Aironet access points allows remote attackers to cause a denial of service (radio-interface input-queue hang) via IAPP 0x3281 packets, aka Bug ID CSCtc12426.

Vendor: Cisco
Product: IOS 
Version:
12.4yg
12.4ye
12.4yd
12.4yb
12.4ya
12.4xz
12.4xy
12.4xw
12.4xv
12.4xt
12.4xr
12.4xq
12.4xp
12.4xn
12.4xm
12.4xl
12.4xk
12.4xj
12.4xg
12.4xf
12.4xe
12.4xd
12.4xc
12.4xb
12.4xa
12.4t
12.4sw
12.4mrb
12.4mra
12.4mr
12.4mdb
12.4mda
12.4md
12.4jx
12.4jmb
12.4jma
12.4jl
12.4jk
12.4jdd
12.4jdc
12.4jda
12.4ja
12.4gc
12.4(9)t
12.4(8)
12.4(7a)
12.4(7)
12.4(6)t1
12.4(6)t
12.4(5b)
12.4(5)
12.4(4)t2
12.4(4)t
12.4(4)mr
12.4(3d)
12.4(3b)
12.4(3a)
12.4(3)t2
12.4(3)
12.4(24)t1
12.4(24)mda
12.4(24)md4
12.4(24)md3
12.4(24)md2
12.4(24)md1
12.4(24)md
12.4(23)
12.4(22)mda
12.4(22)md
12.4(2)xb2
12.4(2)xb
12.4(2)xa
12.4(2)t4
12.4(2)t3
12.4(2)t2
12.4(2)t1
12.4(2)t
12.4(2)mr1
12.4(2)mr
12.4(1c)
12.4(1b)
12.4(15)md
12.4(11)md
12.4(1)
12.4
12.3za
12.3yz
12.3yx
12.3yw
12.3yu
12.3yt
12.3ys
12.3yr
12.3yq
12.3yn
12.3ym
12.3yl
12.3yk
12.3yj
12.3yi
See more versions on NVD

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
http://www.cisco.com/en/US/docs/wireless/access_point/ios/release/notes/12_3_8_JED1rn.html

Related CVE
CVE-2019-1915
 A vulnerability in the web-based interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition (SME), Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, and Cisco U...
CVE-2019-15272
 A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to bypass security restrictions. The vulnerab...
CVE-2019-15259
 A vulnerability in Cisco Unified Contact Center Express (UCCX) Software could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. The vulnerability is due to insufficient input validation of some parameters that ar...
CVE-2019-15256
 A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an aff...
CVE-2019-12716
 A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac...
CVE-2019-12715
 A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac...
CVE-2019-12713
 A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected so...
CVE-2019-12712
 A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected so...
Copyright 2019, cxsecurity.com

 

Back to Top