Vulnerabilities > CVE-2012-4622 - Resource Management Errors vulnerability in Cisco IOS XE 3.2.00.Xo.15.0(2)Xo
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cisco IOS XE 03.02.00.XO.15.0(2)XO on Catalyst 4500E series switches, when a Supervisor Engine 7L-E card is installed, allows remote attackers to cause a denial of service (card reload) via malformed packets that trigger uncorrected ECC error messages, aka Bug ID CSCty88456.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 1 | |
| Hardware | 1 |
Common Weakness Enumeration (CWE)
Nessus
| NASL family | CISCO |
| NASL id | CISCO-SA-20120926-ECC.NASL |
| description | The Catalyst 4500E series switch with Supervisor Engine 7L-E contains a denial of service (DoS) vulnerability when processing specially crafted packets that can cause a reload of the device. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available. |
| last seen | 2020-05-09 |
| modified | 2013-07-08 |
| plugin id | 67204 |
| published | 2013-07-08 |
| reporter | This script is Copyright (C) 2013-2020 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/67204 |
| title | Cisco Catalyst 4500E Series Switch with Cisco Catalyst Supervisor Engine 7L-E Denial of Service Vulnerability (cisco-sa-20120926-ecc) |
References
- http://osvdb.org/85821
- http://osvdb.org/85821
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-ecc
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-ecc
- http://www.securityfocus.com/bid/55701
- http://www.securityfocus.com/bid/55701
- http://www.securitytracker.com/id?1027573
- http://www.securitytracker.com/id?1027573
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78886
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78886