CVE-2012-1367
Cisco IOS 12.0 12.2 15.0-15.2 - Denial of Service via BGP UPDATE Message
Title source: llmDescription
The MallocLite implementation in Cisco IOS 12.0, 12.2, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (Route Processor crash) via a BGP UPDATE message with a modified local-preference (aka LOCAL_PREF) attribute length, aka Bug ID CSCtq06538.
References (1)
Core 1
Core References
Exploit, Vendor Advisory x_refsource_confirm
http://www.cisco.com/en/US/docs/ios/12_2sr/release/notes/122SRcavs1.html
Scores
EPSS
0.0180
EPSS Percentile
75.9%
Details
CWE
CWE-20
Status
published
Products (5)
cisco/ios
12.0
cisco/ios
12.2
cisco/ios
15.0
cisco/ios
15.1
cisco/ios
15.2
Published
Aug 06, 2012
Tracked Since
Feb 18, 2026