What is the severity of CVE-2012-0353?

CVE-2012-0353 is classified as a medium severity vulnerability affecting specific Cisco Adaptive Security Appliance (ASA) devices.

How do I fix CVE-2012-0353?

To fix CVE-2012-0353, ensure that your Cisco ASA device is updated to a software version that is 8.0(5.25) or later.

Which devices are affected by CVE-2012-0353?

CVE-2012-0353 affects Cisco Adaptive Security Appliances, specifically the 5500 series, and the ASA Services Module in Cisco Catalyst 6500 series devices.

What types of vulnerabilities are related to CVE-2012-0353?

CVE-2012-0353 is related to vulnerabilities in the UDP inspection engine of Cisco ASA devices, which can lead to potential denial of service.

What versions of Cisco ASA software are vulnerable to CVE-2012-0353?

Cisco ASA software versions prior to 8.0(5.25), 8.1(2.50), 8.2(5.5), 8.3(2.22), 8.4(2.1), and 8.5 are vulnerable to CVE-2012-0353.

Vulnerability/
CVE-2012-0353

high

7.1

CWE

15/3/2012

6/8/2024

CVE-2012-0353: Input Validation

First published: Thu Mar 15 2012(Updated: )

The UDP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.5), 8.3 before 8.3(2.22), 8.4 before 8.4(2.1), and 8.5 before 8.5(1.2) does not properly handle flows, which allows remote attackers to cause a denial of service (device reload) via a crafted series of (1) IPv4 or (2) IPv6 UDP packets, aka Bug ID CSCtq10441.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Adaptive Security Appliance Software	=8.0
Cisco Adaptive Security Appliance Software	=8.0\(2\)
Cisco Adaptive Security Appliance Software	=8.0\(3\)
Cisco Adaptive Security Appliance Software	=8.0\(4\)
Cisco Adaptive Security Appliance Software	=8.0\(5\)
Cisco Adaptive Security Appliance Software	=8.0.2
Cisco Adaptive Security Appliance Software	=8.0.3
Cisco Adaptive Security Appliance Software	=8.0.4
Cisco Adaptive Security Appliance Software	=8.0.5
Cisco Adaptive Security Appliance Software	=8.1
Cisco Adaptive Security Appliance Software	=8.2\(1\)
Cisco Adaptive Security Appliance Software	=8.2\(2\)
Cisco Adaptive Security Appliance Software	=8.2\(3\)
Cisco Adaptive Security Appliance Software	=8.2\(3.9\)
Cisco Adaptive Security Appliance Software	=8.2\(4\)
Cisco Adaptive Security Appliance Software	=8.2\(4.1\)
Cisco Adaptive Security Appliance Software	=8.2\(4.4\)
Cisco Adaptive Security Appliance Software	=8.2\(5\)
Cisco Adaptive Security Appliance Software	=8.2.1
Cisco Adaptive Security Appliance Software	=8.2.2
Cisco Adaptive Security Appliance Software	=8.2.2-interim
Cisco Adaptive Security Appliance Software	=8.2.3
Cisco Adaptive Security Appliance Software	=8.3\(1\)
Cisco Adaptive Security Appliance Software	=8.3\(2\)
Cisco Adaptive Security Appliance Software	=8.3.1
Cisco Adaptive Security Appliance Software	=8.3.1-interim
Cisco Adaptive Security Appliance Software	=8.3.2
Cisco Adaptive Security Appliance Software	=8.4
Cisco Adaptive Security Appliance Software	=8.4\(1\)
Cisco Adaptive Security Appliance Software	=8.4\(1.11\)
Cisco Adaptive Security Appliance Software	=8.4\(2\)
Cisco Adaptive Security Appliance Software	=8.5
Cisco Adaptive Security Appliance 5500
Cisco Catalyst 6500-E
cisco catalyst 6503-e firmware
Cisco Catalyst 6504-E Firmware
Cisco Catalyst 6506-E Firmware
Cisco Catalyst 6509-E Firmware
Cisco Catalyst 6509-NEB-A Firmware
Cisco Catalyst 6509-V-E
Cisco Catalyst 6513
Cisco Catalyst 6513

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-0353?
CVE-2012-0353 is classified as a medium severity vulnerability affecting specific Cisco Adaptive Security Appliance (ASA) devices.
How do I fix CVE-2012-0353?
To fix CVE-2012-0353, ensure that your Cisco ASA device is updated to a software version that is 8.0(5.25) or later.
Which devices are affected by CVE-2012-0353?
CVE-2012-0353 affects Cisco Adaptive Security Appliances, specifically the 5500 series, and the ASA Services Module in Cisco Catalyst 6500 series devices.
What types of vulnerabilities are related to CVE-2012-0353?
CVE-2012-0353 is related to vulnerabilities in the UDP inspection engine of Cisco ASA devices, which can lead to potential denial of service.
What versions of Cisco ASA software are vulnerable to CVE-2012-0353?
Cisco ASA software versions prior to 8.0(5.25), 8.1(2.50), 8.2(5.5), 8.3(2.22), 8.4(2.1), and 8.5 are vulnerable to CVE-2012-0353.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
agent/author
vendor/cisco
canonical/cisco adaptive security appliance software
version/cisco adaptive security appliance software/8.0
version/cisco adaptive security appliance software/8.0\(2\)
version/cisco adaptive security appliance software/8.0\(3\)
version/cisco adaptive security appliance software/8.0\(4\)
version/cisco adaptive security appliance software/8.0\(5\)
version/cisco adaptive security appliance software/8.0.2
version/cisco adaptive security appliance software/8.0.3
version/cisco adaptive security appliance software/8.0.4
version/cisco adaptive security appliance software/8.0.5
version/cisco adaptive security appliance software/8.1
version/cisco adaptive security appliance software/8.2\(1\)
version/cisco adaptive security appliance software/8.2\(2\)
version/cisco adaptive security appliance software/8.2\(3\)
version/cisco adaptive security appliance software/8.2\(3.9\)
version/cisco adaptive security appliance software/8.2\(4\)
version/cisco adaptive security appliance software/8.2\(4.1\)
version/cisco adaptive security appliance software/8.2\(4.4\)
version/cisco adaptive security appliance software/8.2\(5\)
version/cisco adaptive security appliance software/8.2.1
version/cisco adaptive security appliance software/8.2.2
version/cisco adaptive security appliance software/8.2.2-interim
version/cisco adaptive security appliance software/8.2.3
version/cisco adaptive security appliance software/8.3\(1\)
version/cisco adaptive security appliance software/8.3\(2\)
version/cisco adaptive security appliance software/8.3.1
version/cisco adaptive security appliance software/8.3.1-interim
version/cisco adaptive security appliance software/8.3.2
version/cisco adaptive security appliance software/8.4
version/cisco adaptive security appliance software/8.4\(1\)
version/cisco adaptive security appliance software/8.4\(1.11\)
version/cisco adaptive security appliance software/8.4\(2\)
version/cisco adaptive security appliance software/8.5
canonical/cisco adaptive security appliance 5500
canonical/cisco catalyst 6500-e
canonical/cisco catalyst 6503-e firmware
canonical/cisco catalyst 6504-e firmware
canonical/cisco catalyst 6506-e firmware
canonical/cisco catalyst 6509-e firmware
canonical/cisco catalyst 6509-neb-a firmware
canonical/cisco catalyst 6509-v-e
canonical/cisco catalyst 6513