CVE-2012-0381

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2 through 12.4 Cisco IOS versions 15.0 through 15.2 Cisco IOS XE versions 2.1.x through 2.6.x Cisco IOS XE versions 3.1.xS through 3.4.xS before 3.4.2S Cisco IOS XE versions 3.5.xS before 3.5.1S Cisco IOS XE versions 3.2.xSG before 3.2.2SG

Description The issue allows remote attackers to cause a denial of service (device reload) by sending IKE UDP packets over IPv4 or IPv6. This can be achieved by sending specially crafted packets to any of the UDP ports 500, 848, 4500, or 4848, resulting in a router reload and a denial of service.

Recommendations For Cisco IOS versions 12.2 through 12.4, update to a fixed version. For Cisco IOS versions 15.0 through 15.2, update to a fixed version. For Cisco IOS XE versions 2.1.x through 2.6.x, update to a fixed version. For Cisco IOS XE versions 3.1.xS through 3.4.xS, update to version 3.4.2S or later. For Cisco IOS XE versions 3.5.xS, update to version 3.5.1S or later. For Cisco IOS XE versions 3.2.xSG, update to version 3.2.2SG or later. As a temporary workaround, consider restricting access to UDP ports 500, 848, 4500, and 4848 to minimize the risk of exploitation.