CVE-2012-3950

high

Description

The Intrusion Prevention System (IPS) feature in Cisco IOS 12.3 through 12.4 and 15.0 through 15.2, in certain configurations of enabled categories and missing signatures, allows remote attackers to cause a denial of service (device reload) via DNS packets, aka Bug ID CSCtw55976.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/78882

http://www.securitytracker.com/id?1027580

http://www.securityfocus.com/bid/55695

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-ios-ips

http://secunia.com/advisories/50777

Details

Source: Mitre, NVD

Published: 2012-09-27

Updated: 2017-08-29

Risk Information

CVSS v2

Base Score: 7.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High