Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4658

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-4658
Last Modified 23 Apr 2014 11:13:26
Published 23 Apr 2014 07:52:59
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4658

Summary

The ios-authproxy implementation in Cisco IOS before 15.1(1)SY3 allows remote attackers to cause a denial of service (webauth and HTTP service outage) via vectors that trigger incorrectly terminated HTTP sessions, aka Bug ID CSCtz99447.

Vulnerable Systems

Operating System

  • Cisco Ios 15.1

  • Cisco Ios 15.1%281%29sy

  • Cisco Ios 15.1%281%29sy1

  • Cisco Ios 15.1%281%29sy2


References

CONFIRM - http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/15-1SY/release_notes.pdf


Last Updated: 27 May 2016 11:05:04