Vulnerability CVE-2012-1350


Published: 2012-08-06

Description:
Cisco IOS 12.3 and 12.4 on Aironet access points allows remote attackers to cause a denial of service (radio-interface input-queue hang) via IAPP 0x3281 packets, aka Bug ID CSCtc12426.

Vendor: Cisco
Product: IOS 
Version:
12.4yg
12.4ye
12.4yd
12.4yb
12.4ya
12.4xz
12.4xy
12.4xw
12.4xv
12.4xt
12.4xr
12.4xq
12.4xp
12.4xn
12.4xm
12.4xl
12.4xk
12.4xj
12.4xg
12.4xf
12.4xe
12.4xd
12.4xc
12.4xb
12.4xa
12.4t
12.4sw
12.4mrb
12.4mra
12.4mr
12.4mdb
12.4mda
12.4md
12.4jx
12.4jmb
12.4jma
12.4jl
12.4jk
12.4jdd
12.4jdc
12.4jda
12.4ja
12.4gc
12.4(9)t
12.4(8)
12.4(7a)
12.4(7)
12.4(6)t1
12.4(6)t
12.4(5b)
12.4(5)
12.4(4)t2
12.4(4)t
12.4(4)mr
12.4(3d)
12.4(3b)
12.4(3a)
12.4(3)t2
12.4(3)
12.4(24)t1
12.4(24)mda
12.4(24)md4
12.4(24)md3
12.4(24)md2
12.4(24)md1
12.4(24)md
12.4(23)
12.4(22)mda
12.4(22)md
12.4(2)xb2
12.4(2)xb
12.4(2)xa
12.4(2)t4
12.4(2)t3
12.4(2)t2
12.4(2)t1
12.4(2)t
12.4(2)mr1
12.4(2)mr
12.4(1c)
12.4(1b)
12.4(15)md
12.4(11)md
12.4(1)
12.4
12.3za
12.3yz
12.3yx
12.3yw
12.3yu
12.3yt
12.3ys
12.3yr
12.3yq
12.3yn
12.3ym
12.3yl
12.3yk
12.3yj
12.3yi
See more versions on NVD

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
http://www.cisco.com/en/US/docs/wireless/access_point/ios/release/notes/12_3_8_JED1rn.html

Related CVE
CVE-2019-1794
A vulnerability in the search path processing of Cisco Directory Connector could allow an authenticated, local attacker to load a binary of their choosing. The vulnerability is due to uncontrolled search path elements. An attacker could exploit this ...
CVE-2019-1712
A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the PIM process to restart, resulting in a denial of service condition on an affected device. The vu...
CVE-2019-1711
A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper handling o...
CVE-2019-1686
A vulnerability in the TCP flags inspection feature for access control lists (ACLs) on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass protection offered by a configured ACL on an affected ...
CVE-2018-7340
Duo Network Gateway 1.2.9 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing...
CVE-2019-1786
A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected ...
CVE-2019-1762
A vulnerability in the Secure Storage feature of Cisco IOS and IOS XE Software could allow an authenticated, local attacker to access sensitive system information on an affected device. The vulnerability is due to improper memory operations performed...
CVE-2019-1761
A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to receive potentially sensitive information from an affected device. The vulnerability is due to i...

Copyright 2019, cxsecurity.com

 

Back to Top