CVE-2011-3273

Published Oct 3, 2011

Last updated 13 years ago

CVSS info 7.8

Overview

Description: Memory leak in Cisco IOS 15.0 through 15.1, when IPS or Zone-Based Firewall (aka ZBFW) is configured, allows remote attackers to cause a denial of service (memory consumption or device crash) via vectors that trigger many session creation flows, aka Bug ID CSCti79848.
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF87CC9A-1AF5-4DB4-ACE5-DB938D3B2F84"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.0m:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D03374C-7EF0-4455-839E-09CA4F2E85BC"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.0sg:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58870B6A-55D2-4BFA-89F9-9332205CC130"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.0xa:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC6EF56C-032C-43F6-A979-E18BEA0E16A6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.0xo:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61D28B5C-F578-47E1-A8AC-A79D8A7F340C"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB41294E-F3DF-4F1E-A4C8-E90B21A88836"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1gc:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8665036-2C40-498A-B022-F6DA288D1581"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1m:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F2359A4-8494-4BBA-85E5-C4E66D9362CE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A9B1D5E-02CA-4949-8ACB-9B40642816B6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FAFA073-B16F-475F-B68D-8FE9135AB0A4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1xb:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34137E45-7EC0-4350-9F6D-B427CE07D693"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References