CVE-2012-4660: Buffer Overflow
First published: Mon Oct 29 2012(Updated: )
The SIP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 before 8.2(5.17), 8.3 before 8.3(2.28), 8.4 before 8.4(2.13), 8.5 before 8.5(1.4), and 8.6 before 8.6(1.5) allows remote attackers to cause a denial of service (device reload) via a crafted SIP media-update packet, aka Bug ID CSCtr63728.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Adaptive Security Appliance Software | =8.2 | |
| Cisco Adaptive Security Appliance Software | =8.2\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(3\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(3.9\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4.1\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4.4\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(5\) | |
| Cisco Adaptive Security Appliance Software | =8.3\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.3\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.4 | |
| Cisco Adaptive Security Appliance Software | =8.4\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(1.11\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2.11\) | |
| Cisco Adaptive Security Appliance Software | =8.5 | |
| Cisco Adaptive Security Appliance Software | =8.5\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.6 | |
| Cisco Adaptive Security Appliance Software | =8.6\(1\) | |
| Cisco Adaptive Security Appliance 5500 | ||
| Cisco Catalyst 6500-E | ||
| cisco catalyst 6503-e firmware | ||
| Cisco Catalyst 6504-E Firmware | ||
| Cisco Catalyst 6506-E Firmware | ||
| Cisco Catalyst 6509-E Firmware | ||
| Cisco Catalyst 6509-NEB-A Firmware | ||
| Cisco Catalyst 6509-V-E | ||
| Cisco Catalyst 6513 | ||
| Cisco Catalyst 6513 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-4660?
CVE-2012-4660 has a high severity rating, which indicates it may allow unauthorized access or other significant impacts to affected systems.
How do I fix CVE-2012-4660?
To fix CVE-2012-4660, upgrade your Cisco ASA 5500 series devices and ASASM to the recommended software versions as specified in the Cisco security advisory.
Which devices are affected by CVE-2012-4660?
CVE-2012-4660 affects the Cisco Adaptive Security Appliances 5500 series and the ASA Services Module in Cisco Catalyst 6500 series devices.
What versions of Cisco software are vulnerable to CVE-2012-4660?
Versions of Cisco Adaptive Security Appliance software prior to 8.2(5.17), 8.3(2.28), 8.4(2.13), 8.5(1.4), and 8.6(1.5) are vulnerable to CVE-2012-4660.
What type of vulnerability is CVE-2012-4660?
CVE-2012-4660 is classified as a vulnerability in the SIP inspection engine, allowing for potential unauthorized access.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- agent/author
- vendor/cisco
- canonical/cisco adaptive security appliance software
- version/cisco adaptive security appliance software/8.2
- version/cisco adaptive security appliance software/8.2\(1\)
- version/cisco adaptive security appliance software/8.2\(2\)
- version/cisco adaptive security appliance software/8.2\(3\)
- version/cisco adaptive security appliance software/8.2\(3.9\)
- version/cisco adaptive security appliance software/8.2\(4\)
- version/cisco adaptive security appliance software/8.2\(4.1\)
- version/cisco adaptive security appliance software/8.2\(4.4\)
- version/cisco adaptive security appliance software/8.2\(5\)
- version/cisco adaptive security appliance software/8.3\(1\)
- version/cisco adaptive security appliance software/8.3\(2\)
- version/cisco adaptive security appliance software/8.4
- version/cisco adaptive security appliance software/8.4\(1\)
- version/cisco adaptive security appliance software/8.4\(1.11\)
- version/cisco adaptive security appliance software/8.4\(2\)
- version/cisco adaptive security appliance software/8.4\(2.11\)
- version/cisco adaptive security appliance software/8.5
- version/cisco adaptive security appliance software/8.5\(1\)
- version/cisco adaptive security appliance software/8.6
- version/cisco adaptive security appliance software/8.6\(1\)
- canonical/cisco adaptive security appliance 5500
- canonical/cisco catalyst 6500-e
- canonical/cisco catalyst 6503-e firmware
- canonical/cisco catalyst 6504-e firmware
- canonical/cisco catalyst 6506-e firmware
- canonical/cisco catalyst 6509-e firmware
- canonical/cisco catalyst 6509-neb-a firmware
- canonical/cisco catalyst 6509-v-e
- canonical/cisco catalyst 6513