Lucene search
HistoryAug 06, 2012 - 5:55 p.m.
CVE-2012-2472
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.8
Confidence
High
EPSS
0.002
Percentile
53.2%
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 and 8.4, when SIP inspection is enabled, create many identical pre-allocated secondary pinholes, which might allow remote attackers to cause a denial of service (CPU consumption) via crafted SIP traffic, aka Bug ID CSCtz63143.
Affected configurations
Node
ciscoadaptive_security_appliance_softwareMatch8.2
ORciscoadaptive_security_appliance_softwareMatch8.2\(1\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(2\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(3\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(3.9\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(4\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(4.1\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(4.4\)
ORciscoadaptive_security_appliance_softwareMatch8.2\(5\)
ORciscoadaptive_security_appliance_softwareMatch8.2.1
ORciscoadaptive_security_appliance_softwareMatch8.2.2
ORciscoadaptive_security_appliance_softwareMatch8.2.2interim
ORciscoadaptive_security_appliance_softwareMatch8.2.3
ORciscoadaptive_security_appliance_softwareMatch8.4
ORciscoadaptive_security_appliance_softwareMatch8.4\(1\)
ORciscoadaptive_security_appliance_softwareMatch8.4\(1.11\)
ORciscoadaptive_security_appliance_softwareMatch8.4\(2\)
ORciscoadaptive_security_appliance_softwareMatch8.4\(2.11\)
cisco5500_series_adaptive_security_appliance
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | adaptive_security_appliance_software | 8.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(1) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(1\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(2) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(2\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(3) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(3.9) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3.9\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(4) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(4.1) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.1\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(4.4) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.4\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2(5) | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2012-08-06 17:55:00
cvelist
cvelist
CVE-2012-2472
2012-08-06 17:00:00
nessus
nessus
Cisco ASA SIP CPU Utilization DoS
2012-08-13 00:00:00
cve
cve
CVE-2012-2472
2012-08-06 17:55:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.8
Confidence
High
EPSS
0.002
Percentile
53.2%
Related for NVD:CVE-2012-2472