CVE-2012-3899
Published Sep 16, 2012
Last updated 12 years ago
Overview
- Description
- sensorApp on Cisco IPS 4200 series sensors 6.0, 6.2, and 7.0 does not properly allocate memory, which allows remote attackers to cause a denial of service (memory corruption and process crash, and traffic-inspection outage) via network traffic, aka Bug ID CSCtn23051.
- Source
- ykramarz@cisco.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-399
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B010D14A-7275-454B-B2F8-31EE0D34C24F"
},
{
"criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:6.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B235817-21BA-40AF-AC39-7343007ABF55"
},
{
"criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "03105E7F-12F8-4497-8A27-BD2F1653FD38"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "661A7A3E-09E3-44DA-AEB5-8021BCEF30EF"
},
{
"criteria": "cpe:2.3:h:cisco:ips_4250_sx:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EC8C8063-E6F7-44AB-8FCB-2FDCBE54CBF8"
},
{
"criteria": "cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4A2BCB3B-CE33-4B96-A125-8E7001845A5C"
},
{
"criteria": "cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C3637DA-60C8-4F15-8906-F67ADA344A18"
},
{
"criteria": "cpe:2.3:h:cisco:ips_4270-20:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9F6387E-B7DF-4146-B24F-0D99190FA71B"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]