Vulnerability Details CVE-2012-4660
The SIP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 before 8.2(5.17), 8.3 before 8.3(2.28), 8.4 before 8.4(2.13), 8.5 before 8.5(1.4), and 8.6 before 8.6(1.5) allows remote attackers to cause a denial of service (device reload) via a crafted SIP media-update packet, aka Bug ID CSCtr63728.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.3%
CVSS Severity
CVSS v2 Score 7.8
References
- http://osvdb.org/86144
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-asa
- http://www.securityfocus.com/bid/55864
- http://osvdb.org/86144
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-asa
- http://www.securityfocus.com/bid/55864
Products affected by CVE-2012-4660
-
cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:-
-
cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:7.2
-
cpe:2.3:h:cisco:catalyst_6500:-
-
cpe:2.3:h:cisco:catalyst_6503-e:-
-
cpe:2.3:h:cisco:catalyst_6504-e:-
-
cpe:2.3:h:cisco:catalyst_6506-e:-
-
cpe:2.3:h:cisco:catalyst_6509-e:-
-
cpe:2.3:h:cisco:catalyst_6509-neb-a:-
-
cpe:2.3:h:cisco:catalyst_6509-v-e:-
-
cpe:2.3:h:cisco:catalyst_6513-e:-
-
cpe:2.3:h:cisco:catalyst_6513:-
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3.9)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1)