PT-2012-1822 · Cisco · Cisco Ios+1

Published

2012-05-03

Updated

2012-05-11

CVE-2011-4231

CVSS v2.0

6.3

Medium

Vector

AV:N/AC:M/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.1 through 15.2 Cisco IOS XE versions 3.x

Description The issue allows remote authenticated users to cause a denial of service, resulting in a segmentation fault and device crash, when the software is configured as an IPsec hub with X.509 certificates in use.

Recommendations For Cisco IOS versions 15.1 through 15.2, consider disabling the use of X.509 certificates for IPsec until a fix is available. For Cisco IOS XE versions 3.x, restrict access to the IPsec configuration to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2011-4231

Affected Products

Cisco Ios

Cisco Ios Xe

PT-2012-1822 · Cisco · Cisco Ios+1

CVE-2011-4231

Weakness Enumeration

Related Identifiers

Affected Products

References · 3