Cisco IOS Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities have been identified in Cisco IOS, which can be exploited by attackers to cause remote code execution and denial of service.
- A vulnerability lets remote authenticated users bypass command authorization level controls.
- Zone-based firewall IP/HTTP/H.323/SIP bugs let remote users deny service.
- IKE processing flaw lets remote users deny service.
- Traffic optimization features lets remote users execute arbitrary code.
- SIP NAT vulnerability lets remote users deny service.
- RSVP VPN routing and forwarding vulnerability lets remote users deny service.
- Reverse SSHv2 login vulnerability lets remote users deny service.
- Smart Install vulnerability lets remote users deny service.
- Multicast source discovery vulnerability lets remote users deny service.
Impact
- Denial of Service
- Remote Code Execution
System / Technologies affected
- Cisco IOS version after 12.2
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
The vendor has issued a fix.
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-pai
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-zbfw
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-ike
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-mace
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-nat
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-rsvp
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-ssh
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-smartinstall
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-msdp
Vulnerability Identifier
- CVE-2012-1315
- CVE-2012-1314
- CVE-2012-1312
- CVE-2012-1311
- CVE-2012-1310
- CVE-2012-0388
- CVE-2012-0387
- CVE-2012-0386
- CVE-2012-0385
- CVE-2012-0384
- CVE-2012-0383
- CVE-2012-0382
- CVE-2012-0381
Source
Related Link
- http://securitytracker.com/id/1026860
- http://securitytracker.com/id/1026861
- http://securitytracker.com/id/1026862
- http://securitytracker.com/id/1026863
- http://securitytracker.com/id/1026864
- http://securitytracker.com/id/1026865
- http://securitytracker.com/id/1026866
- http://securitytracker.com/id/1026867
- http://securitytracker.com/id/1026868
Share with