1. Home
  2. CVE Database
  3. CVE-2012-3950
HIGH · 7.1

CVE-2012-3950

The Intrusion Prevention System (IPS) feature in Cisco IOS 12.3 through 12.4 and 15.0 through 15.2, in certain configurations of enabled categories and missing signatures, allows remote attackers to c...

Vulnerability Description

The Intrusion Prevention System (IPS) feature in Cisco IOS 12.3 through 12.4 and 15.0 through 15.2, in certain configurations of enabled categories and missing signatures, allows remote attackers to cause a denial of service (device reload) via DNS packets, aka Bug ID CSCtw55976.

CVSS Score

7.1

HIGH

AV:N/AC:M/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoIos12.3

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2012-3950?

CVE-2012-3950 is a vulnerability with a CVSS score of 7.1 (HIGH). The Intrusion Prevention System (IPS) feature in Cisco IOS 12.3 through 12.4 and 15.0 through 15.2, in certain configurations of enabled categories and missing signatures, allows remote attackers to c...

How severe is CVE-2012-3950?

CVE-2012-3950 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-3950?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios.