CVE-2012-4661

EUVD-2012-4586

29.10.2012, 20:55

Stack-based buffer overflow in the DCERPC inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.3 before 8.3(2.34), 8.4 before 8.4(4.4), 8.5 before 8.5(1.13), and 8.6 before 8.6(1.3) and the Firewall Services Module (FWSM) 4.1 before 4.1(9) in Cisco Catalyst 6500 series switches and 7600 series routers might allow remote attackers to execute arbitrary code via a crafted DCERPC packet, aka Bug IDs CSCtr21359 and CSCtr27522.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:C/I:P/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 92%

Affected Products (NVD)

Vendor	Product	Version
cisco	adaptive_security_appliance_software	8.3\(1\)
cisco	adaptive_security_appliance_software	8.3\(2\)
cisco	adaptive_security_appliance_software	8.4
cisco	adaptive_security_appliance_software	8.4\(1\)
cisco	adaptive_security_appliance_software	8.4\(1.11\)
cisco	adaptive_security_appliance_software	8.4\(2\)
cisco	adaptive_security_appliance_software	8.4\(2.11\)
cisco	adaptive_security_appliance_software	8.5
cisco	adaptive_security_appliance_software	8.5\(1\)
cisco	adaptive_security_appliance_software	8.5\(1.4\)
cisco	adaptive_security_appliance_software	8.6
cisco	adaptive_security_appliance_software	8.6\(1\)
cisco	5500_series_adaptive_security_appliance	*
cisco	7600_router	*
cisco	catalyst_6500	*
cisco	catalyst_6503-e	-
cisco	catalyst_6504-e	-
cisco	catalyst_6506-e	-
cisco	catalyst_6509-e	-
cisco	catalyst_6509-neb-a	-
cisco	catalyst_6509-v-e	-
cisco	catalyst_6513	-
cisco	catalyst_6513-e	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://osvdb.org/86146

http://secunia.com/advisories/50857

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-asa

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-fwsm

http://www.securityfocus.com/bid/55863

https://exchange.xforce.ibmcloud.com/vulnerabilities/79173

http://osvdb.org/86146

http://secunia.com/advisories/50857

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-asa

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-fwsm

http://www.securityfocus.com/bid/55863

https://exchange.xforce.ibmcloud.com/vulnerabilities/79173