CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-1367

The MallocLite implementation in Cisco IOS 12.0, 12.2, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (Route Processor crash) via a BGP UPDATE message with a modified local-preference (aka LOCAL_PREF) attribute length, aka Bug ID CSCtq06538.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.cisco.com/en/US/docs/ios/12_2sr/release/notes/122SRcavs1.html
http://www.cisco.com/en/US/docs/ios/12_2sr/release/notes/122SRcavs1.html

Products affected by CVE-2012-1367

Cisco » Ios » Version: 12.0

cpe:2.3:o:cisco:ios:12.0
Cisco » Ios » Version: 12.2

cpe:2.3:o:cisco:ios:12.2
Cisco » Ios » Version: 15.0

cpe:2.3:o:cisco:ios:15.0
Cisco » Ios » Version: 15.1

cpe:2.3:o:cisco:ios:15.1
Cisco » Ios » Version: 15.2

cpe:2.3:o:cisco:ios:15.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-1367

Products

Pricing

Contact Us