CVE-2012-3924

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.1 through 15.2

Description The issue is related to the SSLVPN implementation when DTLS is enabled, which does not properly handle certain outbound ACL configurations. This allows remote authenticated users to cause a denial of service (device crash) via a session involving a PPP over ATM (PPPoA) interface. An authenticated, remote attacker could exploit this by sending a series of malicious packets via an SSL VPN session that terminates over a PPP over ATM (PPPoA) interface of a targeted device. Successful exploitation could allow the attacker to cause the affected device to crash, resulting in a denial of service condition. A successful exploit could allow an attacker to cause a device to stop responding, which could prevent authorized users from accessing network resources served by the targeted device.

Recommendations For Cisco IOS versions 15.1 through 15.2, update to a fixed software version to resolve the issue. As a temporary workaround, consider restricting access to the SSL VPN component until a patch is available. Avoid using the PPP over ATM (PPPoA) interface in the affected SSL VPN sessions until the issue is resolved.