CVE-2012-1311
Published Mar 29, 2012
Last updated 7 years ago
Overview
- Description
- The RSVP feature in Cisco IOS 15.0 and 15.1 and IOS XE 3.2.xS through 3.4.xS before 3.4.2S, when a VRF interface is configured, allows remote attackers to cause a denial of service (interface queue wedge and service outage) via crafted RSVP packets, aka Bug ID CSCts80643.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
Weaknesses
- nvd@nist.gov
- CWE-399
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF87CC9A-1AF5-4DB4-ACE5-DB938D3B2F84"
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EB41294E-F3DF-4F1E-A4C8-E90B21A88836"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.2.0s:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "621845E0-E885-46E4-929D-55DBE43DC97F"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.2.1s:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "429F3E17-5C65-4C91-8881-AAEAA00BCD44"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.2.2s:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F47E76FF-DE36-463D-B610-A99C90AF7B91"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.3.0s:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BEF8A6EC-3C45-4CDB-81B5-4D50CD5C4087"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.4.0s:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "252377A3-7F15-45F2-A169-BBC37858D4DA"
}
],
"operator": "OR"
}
]
}
]