CVE-2012-0387

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.4, 15.0, 15.1, and 15.2

Description The issue is related to a memory leak in the HTTP Inspection Engine feature in the Zone-Based Firewall, allowing remote attackers to cause a denial of service via crafted transit HTTP traffic. This is one of four vulnerabilities related to Cisco IOS Zone-Based Firewall features, which also include memory leaks associated with crafted IP packets, H.323 inspection, and SIP inspection.

Recommendations For Cisco IOS versions 12.4, 15.0, 15.1, and 15.2, update to a version that addresses these vulnerabilities, as workarounds that mitigate these issues are not available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.