UDP Inspection Flaw in Cisco Security Appliances and Catalyst Series
CVE-2012-0353

Currently unrated

Key Information:

Vendor: Cisco
Status: Adaptive Security Appliance Software; 5500 Series Adaptive Security Appliance; Catalyst 6500; Catalyst 6503-e
Vendor: CVE Published:; 15 March 2012

Summary

A flaw in the UDP inspection engine of Cisco ASA 5500 series and Catalyst 6500 series devices can be exploited by remote attackers. Malicious actors can send specially crafted IPv4 or IPv6 UDP packets to these devices, which may trigger a denial of service condition, resulting in a device reload and service interruption. This vulnerability affects specific versions of the software, necessitating prompt updates to mitigate potential risks.

References

http://www.securityfocus.com/bid/52484

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://secunia.com/advisories/48423

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Mar 15, 2012
Vulnerability Reserved
Jan 4, 2012