CVE-2012-0355: Input Validation
First published: Thu Mar 15 2012(Updated: )
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.4 before 8.4(2.11) and 8.5 before 8.5(1.4) allow remote attackers to cause a denial of service (device reload) via (1) IPv4 or (2) IPv6 packets that trigger syslog message 305006, aka Bug ID CSCts39634.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Adaptive Security Appliance Software | =8.4 | |
| Cisco Adaptive Security Appliance Software | =8.4\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(1.11\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2.11\) | |
| Cisco Adaptive Security Appliance Software | =8.5 | |
| Cisco Adaptive Security Appliance Software | =8.5\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.5\(1.4\) | |
| Cisco Adaptive Security Appliance 5500 | ||
| Cisco Catalyst 6500-E | ||
| cisco catalyst 6503-e firmware | ||
| Cisco Catalyst 6504-E Firmware | ||
| Cisco Catalyst 6506-E Firmware | ||
| Cisco Catalyst 6509-E Firmware | ||
| Cisco Catalyst 6509-NEB-A Firmware | ||
| Cisco Catalyst 6509-V-E | ||
| Cisco Catalyst 6513 | ||
| Cisco Catalyst 6513 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-0355?
CVE-2012-0355 has a high severity rating due to its potential to cause a denial of service in affected devices.
How do I fix CVE-2012-0355?
To fix CVE-2012-0355, upgrade the Cisco Adaptive Security Appliance software to version 8.4(2.11) or 8.5(1.4) or later.
What devices are affected by CVE-2012-0355?
CVE-2012-0355 affects Cisco Adaptive Security Appliances 5500 series and ASA Services Module in Cisco Catalyst 6500 series devices running vulnerable software versions.
Can CVE-2012-0355 be exploited remotely?
Yes, CVE-2012-0355 can be exploited remotely using specially crafted IPv4 or IPv6 packets.
What are the potential consequences of CVE-2012-0355?
The potential consequence of CVE-2012-0355 is a device reload, leading to service interruption and denial of service for users.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/author
- vendor/cisco
- canonical/cisco adaptive security appliance software
- version/cisco adaptive security appliance software/8.4
- version/cisco adaptive security appliance software/8.4\(1\)
- version/cisco adaptive security appliance software/8.4\(1.11\)
- version/cisco adaptive security appliance software/8.4\(2\)
- version/cisco adaptive security appliance software/8.4\(2.11\)
- version/cisco adaptive security appliance software/8.5
- version/cisco adaptive security appliance software/8.5\(1\)
- version/cisco adaptive security appliance software/8.5\(1.4\)
- canonical/cisco adaptive security appliance 5500
- canonical/cisco catalyst 6500-e
- canonical/cisco catalyst 6503-e firmware
- canonical/cisco catalyst 6504-e firmware
- canonical/cisco catalyst 6506-e firmware
- canonical/cisco catalyst 6509-e firmware
- canonical/cisco catalyst 6509-neb-a firmware
- canonical/cisco catalyst 6509-v-e
- canonical/cisco catalyst 6513