Sign-up

ID

VAR-201209-0196


CVE

CVE-2012-4618


TITLE

Cisco IOS of NAT Service disruption in implementations ( Device reload ) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2012-004640

DESCRIPTION

The SIP ALG feature in the NAT implementation in Cisco IOS 12.2, 12.4, and 15.0 through 15.2 allows remote attackers to cause a denial of service (device reload) via transit IP packets, aka Bug ID CSCtn76183. Cisco IOS is a popular Internet operating system. This Cisco bug ID is CSCtn76183

Trust: 2.52

sources: NVD: CVE-2012-4618 // JVNDB: JVNDB-2012-004640 // CNVD: CNVD-2012-5488 // BID: 55693 // VULHUB: VHN-57899

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2012-5488

AFFECTED PRODUCTS

vendor:ciscomodel:iosscope:eqversion:12.4

Trust: 3.0

vendor:ciscomodel:iosscope:eqversion:12.2

Trust: 3.0

vendor:ciscomodel:ios 12.4scope: - version: -

Trust: 1.8

vendor:ciscomodel:iosscope:eqversion:15.2

Trust: 1.6

vendor:ciscomodel:iosscope:eqversion:15.0

Trust: 1.6

vendor:ciscomodel:iosscope:eqversion:15.0\(1\)se

Trust: 1.6

vendor:ciscomodel:iosscope:eqversion:15.1

Trust: 1.6

vendor:ciscomodel:iosscope:eqversion:5.0 to 15.2

Trust: 0.8

vendor:ciscomodel:iosscope:eqversion:15.0-15.2

Trust: 0.6

vendor:ciscomodel:ios 15.2tscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 15.2gcscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 15.1mscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 15.1gcscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.4mdbscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.4mdscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.4 t6scope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.4 mda3scope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.4 t15scope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.2sxjscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.2sxiscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.2sxhscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 12.2 syscope: - version: -

Trust: 0.3

vendor:ciscomodel:ios 15.2 tscope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios 15.2 t1scope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios 15.1 m3scope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios 15.1 t3scope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios 15.1 gc2scope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios 12.4 gc1scope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios 12.2 sxj1scope:neversion: -

Trust: 0.3

vendor:ciscomodel:ios 12.2 sxi7scope:neversion: -

Trust: 0.3

sources: CNVD: CNVD-2012-5488 // BID: 55693 // JVNDB: JVNDB-2012-004640 // CNNVD: CNNVD-201209-611 // NVD: CVE-2012-4618

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2012-4618
value: HIGH

Trust: 1.0

NVD: CVE-2012-4618
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201209-611
value: HIGH

Trust: 0.6

VULHUB: VHN-57899
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2012-4618
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-57899
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-57899 // JVNDB: JVNDB-2012-004640 // CNNVD: CNNVD-201209-611 // NVD: CVE-2012-4618

PROBLEMTYPE DATA

problemtype:CWE-399

Trust: 1.9

sources: VULHUB: VHN-57899 // JVNDB: JVNDB-2012-004640 // NVD: CVE-2012-4618

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201209-611

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201209-611

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2012-004640

PATCH
title:cisco-sa-20120926-naturl:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-nat
Trust: 0.8
title:cisco-sa-20120926-naturl:http://www.cisco.com/cisco/web/support/JP/111/1116/1116610_cisco-sa-20120926-nat-j.html
Trust: 0.8
title:Patch for Cisco IOS NAT Feature Remote Denial of Service Vulnerability (CNVD-2012-5488)url:https://www.cnvd.org.cn/patchInfo/show/23320
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2012-5488 // 
            
            
            
            JVNDB: JVNDB-2012-004640

EXTERNAL IDS
db:NVDid:CVE-2012-4618
Trust: 3.4
db:BIDid:55693
Trust: 1.4
db:SECTRACKid:1027579
Trust: 1.1
db:JVNDBid:JVNDB-2012-004640
Trust: 0.8
db:CNNVDid:CNNVD-201209-611
Trust: 0.7
db:CNVDid:CNVD-2012-5488
Trust: 0.6
db:NSFOCUSid:20888
Trust: 0.6
db:CISCOid:20120926 CISCO IOS SOFTWARE NETWORK ADDRESS TRANSLATION VULNERABILITIES
Trust: 0.6
db:SEEBUGid:SSVID-60409
Trust: 0.1
db:VULHUBid:VHN-57899
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2012-5488 // 
            
            
            
            VULHUB: VHN-57899 // 
            
            
            
            BID: 55693 // 
            
            
            
            JVNDB: JVNDB-2012-004640 // 
            
            
            
            CNNVD: CNNVD-201209-611 // 
            
            
            
            NVD: CVE-2012-4618

REFERENCES
url:http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20120926-nat
Trust: 2.6
url:http://www.securityfocus.com/bid/55693
Trust: 1.1
url:http://www.securitytracker.com/id?1027579
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-4618
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-4618
Trust: 0.8
url:http://www.nsfocus.net/vulndb/20888
Trust: 0.6
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2012-5488 // 
            
            
            
            VULHUB: VHN-57899 // 
            
            
            
            BID: 55693 // 
            
            
            
            JVNDB: JVNDB-2012-004640 // 
            
            
            
            CNNVD: CNNVD-201209-611 // 
            
            
            
            NVD: CVE-2012-4618

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 55693

SOURCES
db:CNVDid:CNVD-2012-5488
db:VULHUBid:VHN-57899
db:BIDid:55693
db:JVNDBid:JVNDB-2012-004640
db:CNNVDid:CNNVD-201209-611
db:NVDid:CVE-2012-4618

LAST UPDATE DATE
2025-04-11T22:49:25.239000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2012-5488date:2012-09-28T00:00:00
db:VULHUBid:VHN-57899date:2013-04-11T00:00:00
db:BIDid:55693date:2015-03-19T08:42:00
db:JVNDBid:JVNDB-2012-004640date:2012-09-28T00:00:00
db:CNNVDid:CNNVD-201209-611date:2012-09-27T00:00:00
db:NVDid:CVE-2012-4618date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:CNVDid:CNVD-2012-5488date:2012-09-28T00:00:00
db:VULHUBid:VHN-57899date:2012-09-27T00:00:00
db:BIDid:55693date:2012-09-26T00:00:00
db:JVNDBid:JVNDB-2012-004640date:2012-09-28T00:00:00
db:CNNVDid:CNNVD-201209-611date:2012-09-27T00:00:00
db:NVDid:CVE-2012-4618date:2012-09-27T00:55:00.937