CVE-2012-3946
First published: Thu Apr 24 2014(Updated: )
Cisco IOS before 15.3(2)S allows remote attackers to bypass interface ACL restrictions in opportunistic circumstances by sending IPv6 packets in an unspecified scenario in which expected packet drops do not occur for "a small percentage" of the packets, aka Bug ID CSCty73682.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS | <=15.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-3946?
CVE-2012-3946 has a medium severity level due to its potential for bypassing access controls.
How do I fix CVE-2012-3946?
To fix CVE-2012-3946, upgrade Cisco IOS to version 15.3(2)S or later.
What systems are affected by CVE-2012-3946?
CVE-2012-3946 affects Cisco IOS versions prior to 15.3(2)S.
What is the impact of exploiting CVE-2012-3946?
Exploiting CVE-2012-3946 allows remote attackers to bypass interface ACL restrictions.
When was CVE-2012-3946 published?
CVE-2012-3946 was published on July 12, 2012.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- agent/source
- vendor/cisco
- canonical/cisco ios
- version/cisco ios/15.3