CVE-2012-4663

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.3 before 8.3(2.25) Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.4 before 8.4(2.5) Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.5 before 8.5(1.13) Cisco ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices versions 8.3 before 8.3(2.25) Cisco ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices versions 8.4 before 8.4(2.5) Cisco ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices versions 8.5 before 8.5(1.13) Cisco Firewall Services Module (FWSM) 4.1 before 4.1(7) in Cisco Catalyst 6500 series switches and 7600 series routers

Description The issue allows remote attackers to cause a denial of service (device reload) via a crafted DCERPC packet. Successful exploitation could allow an unauthenticated remote attacker to trigger a reload of the affected device. Additionally, exploitation could cause a stack overflow and possibly the execution of arbitrary commands.

Recommendations For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 8.3, update to 8.3(2.25) or later. For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 8.4, update to 8.4(2.5) or later. For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 8.5, update to 8.5(1.13) or later. For Cisco ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices version 8.3, update to 8.3(2.25) or later. For Cisco ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices version 8.4, update to 8.4(2.5) or later. For Cisco ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices version 8.5, update to 8.5(1.13) or later. For Cisco Firewall Services Module (FWSM) 4.1, update to 4.1(7) or later.