CVE-2012-4081: Buffer Overflow
First published: Fri Sep 20 2013(Updated: )
MCServer in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (application crash) via invalid MCTools parameters, aka Bug ID CSCtg20734.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified Computing System software | =1.0\(2k\) | |
| Cisco Unified Computing System software | =1.0_base | |
| Cisco Unified Computing System software | =1.1_base | |
| Cisco Unified Computing System software | =1.2\(1d\) | |
| Cisco Unified Computing System software | =1.2_base | |
| Cisco Unified Computing System software | =1.3\(1c\) | |
| Cisco Unified Computing System software | =1.3\(1m\) | |
| Cisco Unified Computing System software | =1.3\(1n\) | |
| Cisco Unified Computing System software | =1.3\(1o\) | |
| Cisco Unified Computing System software | =1.3\(1p\) | |
| Cisco Unified Computing System software | =1.3\(1q\) | |
| Cisco Unified Computing System software | =1.3\(1t\) | |
| Cisco Unified Computing System software | =1.3\(1w\) | |
| Cisco Unified Computing System software | =1.3\(1y\) | |
| Cisco Unified Computing System software | =1.3_base | |
| Cisco Unified Computing System software | =1.4\(1m\) | |
| Cisco Unified Computing System software | =1.4_base |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-4081?
CVE-2012-4081 is classified as a denial of service vulnerability, which can cause an application crash.
How do I fix CVE-2012-4081?
To fix CVE-2012-4081, update your Cisco Unified Computing System software to the latest patched version provided by Cisco.
What versions of Cisco Unified Computing System are affected by CVE-2012-4081?
CVE-2012-4081 affects Cisco Unified Computing System versions 1.0(2k), 1.0_base, 1.1_base, 1.2(1d), 1.2_base, and several 1.3 and 1.4 variations.
Who can exploit CVE-2012-4081?
CVE-2012-4081 can be exploited by local users who have access to the system.
What are the consequences of exploiting CVE-2012-4081?
Exploiting CVE-2012-4081 can lead to denial of service, resulting in an application crash and potential service disruption.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco unified computing system software
- version/cisco unified computing system software/1.0\(2k\)
- version/cisco unified computing system software/1.0_base
- version/cisco unified computing system software/1.1_base
- version/cisco unified computing system software/1.2\(1d\)
- version/cisco unified computing system software/1.2_base
- version/cisco unified computing system software/1.3\(1c\)
- version/cisco unified computing system software/1.3\(1m\)
- version/cisco unified computing system software/1.3\(1n\)
- version/cisco unified computing system software/1.3\(1o\)
- version/cisco unified computing system software/1.3\(1p\)
- version/cisco unified computing system software/1.3\(1q\)
- version/cisco unified computing system software/1.3\(1t\)
- version/cisco unified computing system software/1.3\(1w\)
- version/cisco unified computing system software/1.3\(1y\)
- version/cisco unified computing system software/1.3_base
- version/cisco unified computing system software/1.4\(1m\)
- version/cisco unified computing system software/1.4_base