ID CVE-2012-4620
Summary Cisco IOS 12.2 and 15.0 through 15.2 on Cisco 10000 series routers, when a tunnel interface exists, allows remote attackers to cause a denial of service (interface queue wedge) via tunneled (1) GRE/IP, (2) IPIP, or (3) IPv6 in IPv4 packets, aka Bug ID CSCts66808.
References
Vulnerable Configurations
  • cpe:2.3:h:cisco:10008_router:*:*:*:*:*:*:*:*
    cpe:2.3:h:cisco:10008_router:*:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:ios:15.0\(1\)se:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:ios:15.0\(1\)se:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*
  • cpe:2.3:o:cisco:ios:15.2:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:ios:15.2:*:*:*:*:*:*:*
CVSS
Base: 7.8 (as of 29-08-2017 - 01:32)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:C
refmap via4
bid 55696
cisco 20120926 Cisco IOS Software Tunneled Traffic Queue Wedge Vulnerability
sectrack 1027578
xf ciscoios-tunneled-dos(78883)
Last major update 29-08-2017 - 01:32
Published 27-09-2012 - 00:55
Last modified 29-08-2017 - 01:32
Back to Top