CVE-2012-5723
Cisco IOS XE < 3.8S - Denial of Service via Crafted ICMP Packets
Title source: llmDescription
Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service (device reload) via crafted (1) broadcast or (2) multicast ICMP packets with fragmentation, aka Bug ID CSCub55948.
References (1)
Core 1
Core References
Release Notes x_refsource_confirm
http://www.cisco.com/c/en/us/td/docs/routers/asr1000/release/notes/asr1k_rn_rel_notes/asr1k_caveats_38s.html
Scores
EPSS
0.0072
EPSS Percentile
49.5%
Details
CWE
CWE-20
Status
published
Products (19)
cisco/asr_1001
cisco/asr_1002
cisco/asr_1002-x
cisco/asr_1002_fixed_router
cisco/asr_1004
cisco/asr_1006
cisco/asr_1013
cisco/asr_1023_router
cisco/ios_xe
3.6.0s
cisco/ios_xe
3.6.1s
... and 9 more
Published
Apr 24, 2014
Tracked Since
Feb 18, 2026