Cisco IOS Zone-Based Firewall Multiple Denial of Service Vulnerabilities

Bugtraq ID:	52753
Class:	Design Error
CVE:	CVE-2012-0387 CVE-2012-1310 CVE-2012-0388 CVE-2012-1315
Remote:	Yes
Local:	No
Published:	Mar 28 2012 12:00AM
Updated:	Mar 28 2012 12:00AM
Credit:	Cisco
Vulnerable:	Cisco IOS 15.2(1)T2 Cisco Ios 15.2(1)GC2 Cisco IOS 15.1M Cisco Ios 15.1(3)T3 Cisco Ios 15.1(3)T3 Cisco Ios 15.0(1)M8 Cisco IOS 12.4YG Cisco IOS 12.4YE Cisco IOS 12.4YD Cisco IOS 12.4YB Cisco IOS 12.4YA Cisco IOS 12.4XZ Cisco IOS 12.4XR Cisco IOS 12.4MRB Cisco IOS 12.4MR Cisco IOS 12.4MDB Cisco IOS 12.4MDA Cisco IOS 12.4MD Cisco IOS 12.4GC
Not Vulnerable:	Cisco Ios 15.2(3)T Cisco Ios 15.1(4)M4 Cisco Ios 15.1(2)GC2 Cisco IOS 15.0SG Cisco IOS 15.0SE Cisco IOS 15.0SA Cisco IOS 15.0MRA Cisco IOS 15.0MR

Cisco IOS Zone-Based Firewall Multiple Denial of Service Vulnerabilities

Cisco IOS is prone to multiple remote denial-of-service vulnerabilities.

An attacker can exploit these issues to cause an affected device to reload, denying service to legitimate users.

Cisco IOS Zone-Based Firewall Multiple Denial of Service Vulnerabilities

To exploit this issue, attackers can use readily available network utilities.

Cisco IOS Zone-Based Firewall Multiple Denial of Service Vulnerabilities

Solution:
Updates are available. Please see the references for details.

Cisco IOS Zone-Based Firewall Multiple Denial of Service Vulnerabilities

References:

• Cisco Homepage (Cisco )
  
• Cisco IOS Software Zone-Based Firewall Vulnerabilities (Cisco)