Lucene search

CiscoCISCO-SA-20131007-CVE-2012-4091

HistoryOct 07, 2013 - 6:25 p.m.

Cisco NX-OS Software Routing Information Protocol Denial of Service Vulnerability

2013-10-0718:25:49

tools.cisco.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.007

Percentile

80.6%

JSON

A vulnerability in the Routing Information Protocol (RIP) service engine of Cisco NX-OS Software could allow an unauthenticated, remote attacker
to create a denial of service (DoS) condition by causing the RIP service engine to
restart.

The vulnerability is due to improper input filtering of
RIP packets. An attacker could exploit this vulnerability by sending a
malformed RIPv4 or RIPv6 message to UDP port 520. A successful exploit
could result in the target device restarting the RIP service engine, which could lead to a denial of service for any destinations populated in
the route table by RIP.

Cisco has confirmed the vulnerability in a security advisory and has released software updates.

To exploit this vulnerability, an attacker may require access to trusted, internal networks to send crafted requests to the affected software. This access requirement could limit the likelihood of a successful exploit.

Cisco indicates through the CVSS score that proof-of-concept exploit code exists; however, the code is not known to be publicly available.

Affected configurations

Vulners

Node

cisconx_osMatch4.1

cisconx_osMatch5.0

cisconx_osMatch4.2

cisconx_osMatch5.1

cisconx_osMatch4.1\(2\)

cisconx_osMatch4.1\(3\)

cisconx_osMatch4.1\(4\)

cisconx_osMatch4.1\(5\)

cisconx_osMatch5.0\(2a\)

cisconx_osMatch5.0\(3\)

cisconx_osMatch5.0\(5\)

cisconx_osMatch4.2\(2a\)

cisconx_osMatch4.2\(3\)

cisconx_osMatch4.2\(4\)

cisconx_osMatch4.2\(6\)

cisconx_osMatch4.2\(8\)

cisconx_osMatch5.1\(1\)

cisconx_osMatch5.1\(1a\)

cisconx_osMatch5.1\(3\)

cisconx_osMatch5.1\(4\)

cisconx_osMatch5.1\(5\)

cisconx_osMatch5.1\(6\)

VendorProductVersionCPE
cisconx_os4.1cpe:2.3:o:cisco:nx_os:4.1:*:*:*:*:*:*:*
cisconx_os5.0cpe:2.3:o:cisco:nx_os:5.0:*:*:*:*:*:*:*
cisconx_os4.2cpe:2.3:o:cisco:nx_os:4.2:*:*:*:*:*:*:*
cisconx_os5.1cpe:2.3:o:cisco:nx_os:5.1:*:*:*:*:*:*:*
cisconx_os4.1(2)cpe:2.3:o:cisco:nx_os:4.1\(2\):*:*:*:*:*:*:*
cisconx_os4.1(3)cpe:2.3:o:cisco:nx_os:4.1\(3\):*:*:*:*:*:*:*
cisconx_os4.1(4)cpe:2.3:o:cisco:nx_os:4.1\(4\):*:*:*:*:*:*:*
cisconx_os4.1(5)cpe:2.3:o:cisco:nx_os:4.1\(5\):*:*:*:*:*:*:*
cisconx_os5.0(2a)cpe:2.3:o:cisco:nx_os:5.0\(2a\):*:*:*:*:*:*:*
cisconx_os5.0(3)cpe:2.3:o:cisco:nx_os:5.0\(3\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	nx_os	4.1	cpe:2.3:o:cisco:nx_os:4.1:::::::*
cisco	nx_os	5.0	cpe:2.3:o:cisco:nx_os:5.0:::::::*
cisco	nx_os	4.2	cpe:2.3:o:cisco:nx_os:4.2:::::::*
cisco	nx_os	5.1	cpe:2.3:o:cisco:nx_os:5.1:::::::*
cisco	nx_os	4.1(2)	cpe:2.3:o:cisco:nx_os:4.1\(2\):::::::*
cisco	nx_os	4.1(3)	cpe:2.3:o:cisco:nx_os:4.1\(3\):::::::*
cisco	nx_os	4.1(4)	cpe:2.3:o:cisco:nx_os:4.1\(4\):::::::*
cisco	nx_os	4.1(5)	cpe:2.3:o:cisco:nx_os:4.1\(5\):::::::*
cisco	nx_os	5.0(2a)	cpe:2.3:o:cisco:nx_os:5.0\(2a\):::::::*
cisco	nx_os	5.0(3)	cpe:2.3:o:cisco:nx_os:5.0\(3\):::::::*

Rows per page:

1-10 of 221

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20131007-CVE-2012-4091

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.007

Percentile

80.6%

JSON

Related for CISCO-SA-20131007-CVE-2012-4091