Vulnerability Details CVE-2012-0353
The UDP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.5), 8.3 before 8.3(2.22), 8.4 before 8.4(2.1), and 8.5 before 8.5(1.2) does not properly handle flows, which allows remote attackers to cause a denial of service (device reload) via a crafted series of (1) IPv4 or (2) IPv6 UDP packets, aka Bug ID CSCtq10441.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.8%
CVSS Severity
CVSS v2 Score 7.1
References
- http://osvdb.org/80043
- http://secunia.com/advisories/48423
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120314-asa
- http://www.securityfocus.com/bid/52484
- http://www.securitytracker.com/id?1026800
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74029
- http://osvdb.org/80043
- http://secunia.com/advisories/48423
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120314-asa
- http://www.securityfocus.com/bid/52484
- http://www.securitytracker.com/id?1026800
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74029
Products affected by CVE-2012-0353
-
cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:-
-
cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:7.2
-
cpe:2.3:h:cisco:catalyst_6500:-
-
cpe:2.3:h:cisco:catalyst_6503-e:-
-
cpe:2.3:h:cisco:catalyst_6504-e:-
-
cpe:2.3:h:cisco:catalyst_6506-e:-
-
cpe:2.3:h:cisco:catalyst_6509-e:-
-
cpe:2.3:h:cisco:catalyst_6509-neb-a:-
-
cpe:2.3:h:cisco:catalyst_6509-v-e:-
-
cpe:2.3:h:cisco:catalyst_6513-e:-
-
cpe:2.3:h:cisco:catalyst_6513:-
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0(4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.3
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.4
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0.5
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.1
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3.9)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.3
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.1
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5