PT-2012-4462 · Cisco · Cisco Catalyst 6500+2
Published
2012-06-20
·
Updated
2023-08-15
·
CVE-2012-3058
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.4 before 8.4(4.1)
Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.5 before 8.5(1.11)
Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.6 before 8.6(1.3)
ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices versions 8.4 before 8.4(4.1)
ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices versions 8.5 before 8.5(1.11)
ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices versions 8.6 before 8.6(1.3)
Description
The issue allows remote attackers to cause a denial of service (device reload) via IPv6 transit traffic that triggers syslog message 110003.
Recommendations
For versions 8.4 before 8.4(4.1), update to version 8.4(4.1) or later.
For versions 8.5 before 8.5(1.11), update to version 8.5(1.11) or later.
For versions 8.6 before 8.6(1.3), update to version 8.6(1.3) or later.
As a temporary workaround, consider restricting IPv6 transit traffic to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Asa Services Module
Cisco Asa
Cisco Catalyst 6500