CVE-2012-1311

Executive Summary

Informations
Name	CVE-2012-1311	First vendor Publication	2012-03-29
Vendor	Cve	Last vendor Modification	2012-08-15

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score	7.8	Attack Range	Network
Cvss Impact Score	6.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The RSVP feature in Cisco IOS 15.0 and 15.1 and IOS XE 3.2.xS through 3.4.xS before 3.4.2S, when a VRF interface is configured, allows remote attackers to cause a denial of service (interface queue wedge and service outage) via crafted RSVP packets, aka Bug ID CSCts80643.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1311

CWE : Common Weakness Enumeration

id	Name
CWE-399	Resource Management Errors

CPE : Common Platform Enumeration

Type	Description	Count
Os	Cisco Ios cpe:/o:cisco:ios:15.1 cpe:/o:cisco:ios:15.0	2
Os	Cisco Ios Xe cpe:/o:cisco:ios_xe:3.4.0s cpe:/o:cisco:ios_xe:3.3.0s cpe:/o:cisco:ios_xe:3.2.2s cpe:/o:cisco:ios_xe:3.2.1s cpe:/o:cisco:ios_xe:3.2.0s	5

Internal Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/52754
CISCO	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa...
OSVDB	http://osvdb.org/80692
SECUNIA	http://secunia.com/advisories/48611 http://secunia.com/advisories/48621