CVE-2012-0382
HIGHCisco IOS 12.0-12.4, 15.0-15.2 & IOS XE 2.1.x-2.6.x, 3.1.xS-3.4.xS <3.4.1S, 3.1.xSG-3.2.xSG <3.2.2SG DoS via MSDP IGMP
Title source: llmDescription
The Multicast Source Discovery Protocol (MSDP) implementation in Cisco IOS 12.0, 12.2 through 12.4, and 15.0 through 15.2 and IOS XE 2.1.x through 2.6.x and 3.1.xS through 3.4.xS before 3.4.1S and 3.1.xSG and 3.2.xSG before 3.2.2SG allows remote attackers to cause a denial of service (device reload) via encapsulated IGMP data in an MSDP packet, aka Bug ID CSCtr28857.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1026868
Not Applicable third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/48630
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/52759
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-msdp
Broken Link vdb-entry
x_refsource_osvdb
http://osvdb.org/80693
Not Applicable third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/48633
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/74431
Scores
CVSS v3
7.5
EPSS
0.0385
EPSS Percentile
88.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (50)
cisco/ios
12.0
cisco/ios
12.2
cisco/ios
12.2\(1\)
cisco/ios
12.2\(1\)dx
cisco/ios
12.2\(1\)s
cisco/ios
12.2\(1\)t
cisco/ios
12.2\(1\)xa
cisco/ios
12.2\(1\)xd
cisco/ios
12.2\(1\)xd1
cisco/ios
12.2\(1\)xd3
... and 40 more
Published
Mar 29, 2012
Tracked Since
Feb 18, 2026