CVE-2012-0354: Input Validation
First published: Thu Mar 15 2012(Updated: )
The Threat Detection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.0 through 8.2 before 8.2(5.20), 8.3 before 8.3(2.29), 8.4 before 8.4(3), 8.5 before 8.5(1.6), and 8.6 before 8.6(1.1) allows remote attackers to cause a denial of service (device reload) via (1) IPv4 or (2) IPv6 packets that trigger a shun event, aka Bug ID CSCtw35765.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Adaptive Security Appliance Software | =8.0 | |
| Cisco Adaptive Security Appliance Software | =8.0\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.0\(3\) | |
| Cisco Adaptive Security Appliance Software | =8.0\(4\) | |
| Cisco Adaptive Security Appliance Software | =8.0\(5\) | |
| Cisco Adaptive Security Appliance Software | =8.0.2 | |
| Cisco Adaptive Security Appliance Software | =8.0.3 | |
| Cisco Adaptive Security Appliance Software | =8.0.4 | |
| Cisco Adaptive Security Appliance Software | =8.0.5 | |
| Cisco Adaptive Security Appliance Software | =8.1 | |
| Cisco Adaptive Security Appliance Software | =8.2\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(3\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(3.9\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4.1\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4.4\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(5\) | |
| Cisco Adaptive Security Appliance Software | =8.2.1 | |
| Cisco Adaptive Security Appliance Software | =8.2.2 | |
| Cisco Adaptive Security Appliance Software | =8.2.2-interim | |
| Cisco Adaptive Security Appliance Software | =8.2.3 | |
| Cisco Adaptive Security Appliance Software | =8.3\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.3\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.3.1 | |
| Cisco Adaptive Security Appliance Software | =8.3.1-interim | |
| Cisco Adaptive Security Appliance Software | =8.3.2 | |
| Cisco Adaptive Security Appliance Software | =8.4 | |
| Cisco Adaptive Security Appliance Software | =8.4\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(1.11\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2.11\) | |
| Cisco Adaptive Security Appliance Software | =8.5 | |
| Cisco Adaptive Security Appliance Software | =8.5\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.5\(1.4\) | |
| Cisco Adaptive Security Appliance Software | =8.6 | |
| Cisco Adaptive Security Appliance 5500 | ||
| Cisco Catalyst 6500-E | ||
| cisco catalyst 6503-e firmware | ||
| Cisco Catalyst 6504-E Firmware | ||
| Cisco Catalyst 6506-E Firmware | ||
| Cisco Catalyst 6509-E Firmware | ||
| Cisco Catalyst 6509-NEB-A Firmware | ||
| Cisco Catalyst 6509-V-E | ||
| Cisco Catalyst 6513 | ||
| Cisco Catalyst 6513 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-0354?
CVE-2012-0354 is rated as having a moderate severity level due to potential denial of service vulnerabilities.
How do I fix CVE-2012-0354?
To remediate CVE-2012-0354, upgrade your Cisco Adaptive Security Appliance software to the recommended versions or later as specified in the advisory.
What devices are affected by CVE-2012-0354?
CVE-2012-0354 affects Cisco Adaptive Security Appliances 5500 series and the ASA Services Module in the Catalyst 6500 series running specific vulnerable software versions.
What is the nature of the vulnerability in CVE-2012-0354?
CVE-2012-0354 involves a flaw in the Threat Detection feature that could lead to denial of service conditions.
When was CVE-2012-0354 disclosed?
CVE-2012-0354 was disclosed on March 14, 2012, as part of a Cisco security advisory.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/author
- vendor/cisco
- canonical/cisco adaptive security appliance software
- version/cisco adaptive security appliance software/8.0
- version/cisco adaptive security appliance software/8.0\(2\)
- version/cisco adaptive security appliance software/8.0\(3\)
- version/cisco adaptive security appliance software/8.0\(4\)
- version/cisco adaptive security appliance software/8.0\(5\)
- version/cisco adaptive security appliance software/8.0.2
- version/cisco adaptive security appliance software/8.0.3
- version/cisco adaptive security appliance software/8.0.4
- version/cisco adaptive security appliance software/8.0.5
- version/cisco adaptive security appliance software/8.1
- version/cisco adaptive security appliance software/8.2\(1\)
- version/cisco adaptive security appliance software/8.2\(2\)
- version/cisco adaptive security appliance software/8.2\(3\)
- version/cisco adaptive security appliance software/8.2\(3.9\)
- version/cisco adaptive security appliance software/8.2\(4\)
- version/cisco adaptive security appliance software/8.2\(4.1\)
- version/cisco adaptive security appliance software/8.2\(4.4\)
- version/cisco adaptive security appliance software/8.2\(5\)
- version/cisco adaptive security appliance software/8.2.1
- version/cisco adaptive security appliance software/8.2.2
- version/cisco adaptive security appliance software/8.2.2-interim
- version/cisco adaptive security appliance software/8.2.3
- version/cisco adaptive security appliance software/8.3\(1\)
- version/cisco adaptive security appliance software/8.3\(2\)
- version/cisco adaptive security appliance software/8.3.1
- version/cisco adaptive security appliance software/8.3.1-interim
- version/cisco adaptive security appliance software/8.3.2
- version/cisco adaptive security appliance software/8.4
- version/cisco adaptive security appliance software/8.4\(1\)
- version/cisco adaptive security appliance software/8.4\(1.11\)
- version/cisco adaptive security appliance software/8.4\(2\)
- version/cisco adaptive security appliance software/8.4\(2.11\)
- version/cisco adaptive security appliance software/8.5
- version/cisco adaptive security appliance software/8.5\(1\)
- version/cisco adaptive security appliance software/8.5\(1.4\)
- version/cisco adaptive security appliance software/8.6
- canonical/cisco adaptive security appliance 5500
- canonical/cisco catalyst 6500-e
- canonical/cisco catalyst 6503-e firmware
- canonical/cisco catalyst 6504-e firmware
- canonical/cisco catalyst 6506-e firmware
- canonical/cisco catalyst 6509-e firmware
- canonical/cisco catalyst 6509-neb-a firmware
- canonical/cisco catalyst 6509-v-e
- canonical/cisco catalyst 6513