Skip to main content

Cisco IOS Multiple Vulnerabilities

Last Update Date: 30 Mar 2012 Release Date: 29 Mar 2012 5445 Views

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities have been identified in Cisco IOS, which can be exploited by attackers to cause remote code execution and denial of service.

  1. A vulnerability lets remote authenticated users bypass command authorization level controls.
  2. Zone-based firewall IP/HTTP/H.323/SIP bugs let remote users deny service.
  3. IKE processing flaw lets remote users deny service.
  4. Traffic optimization features lets remote users execute arbitrary code.
  5. SIP NAT vulnerability lets remote users deny service.
  6. RSVP VPN routing and forwarding vulnerability lets remote users deny service.
  7. Reverse SSHv2 login  vulnerability lets remote users deny service.
  8. Smart Install  vulnerability lets remote users deny service.
  9. Multicast source discovery  vulnerability lets remote users deny service.

Impact

  • Denial of Service
  • Remote Code Execution

System / Technologies affected

  • Cisco IOS version after 12.2

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link