Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4617

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2012-4617
Last Modified 13 Feb 2013 11:56:49
Published 26 Sep 2012 08:55:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4617

Summary

The BGP implementation in Cisco IOS 15.2, IOS XE 3.5.xS before 3.5.2S, and IOS XR 4.1.0 through 4.2.2 allows remote attackers to cause a denial of service (multiple connection resets) by leveraging a peer relationship and sending a malformed attribute, aka Bug IDs CSCtt35379, CSCty58300, CSCtz63248, and CSCtz62914.

Vulnerable Systems

Operating System

  • Cisco Ios 15.2

  • Cisco Ios Xe 3.5.0s

  • Cisco Ios Xe 3.5.1s

  • Cisco Ios Xr 4.1

  • Cisco Ios Xr 4.1.1

  • Cisco Ios Xr 4.1.2

  • Cisco Ios Xr 4.2.0

  • Cisco Ios Xr 4.2.1

  • Cisco Ios Xr 4.2.2


References

CISCO - 20120926 Cisco IOS Software Malformed Border Gateway Protocol Attribute Vulnerability

BID - 55694

SECTRACK - 1027576


Last Updated: 27 May 2016 11:00:48