Cisco Event Response: Semi-Annual Cisco IOS Software Security Advisory Bundled Publication

March 28, 2012

Cisco released its semi-annual Cisco IOS Software Security Advisory Bundled Publication on March 28, 2012. In direct response to customer feedback, Cisco releases bundles of Cisco IOS Software Security Advisories on the fourth Wednesday of the month in March and September of each calendar year. This publication includes nine Security Advisories that address vulnerabilities in Cisco IOS Software. Exploitation of the individual vulnerabilities could result in denial of service conditions or, in one case, allow an authenticated user to exceed their authorization level and gain administrative control over the device.

Use the Cisco IOS Software Checker to quickly determine if a given Cisco IOS Software release is exposed to Cisco product vulnerabilities.

Cisco Security
Intelligence Operations

Event Intelligence

The following table identifies Cisco Security Intelligence Operations content and Cisco mitigation information that is associated with this Cisco IOS Software Security Advisory bundled publication:

Cisco Security Advisory	Cisco Applied Mitigation Bulletin	Cisco IntelliShield Alert	CVE ID	CVSS Base Score
cisco-sa-20120328-zbfw Cisco IOS Software Zone-Based Firewall Vulnerabilities	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Software Zone-Based Firewall H.323 Inspection Engine Denial of Service Vulnerability	CVE-2012-0388	7.8
		Cisco IOS Software Zone-Based Firewall HTTP Inspection Engine Denial of Service Vulnerability	CVE-2012-0387	7.8
		Cisco IOS Software Zone-Based Firewall Crafted IP Packets Denial of Service Vulnerability	CVE-2012-1310	7.8
		Cisco IOS Software Zone-Based Firewall Session Initiation Protocol Engine Denial of Service Vulnerability	CVE-2012-1315	7.8
cisco-sa-20120328-nat Cisco IOS Software Network Address Translation Vulnerability	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Software Network Address Translation Session Initiation Protocol Denial of Service Vulnerability	CVE-2012-0383	7.8
cisco-sa-20120328-ike Cisco IOS Software Internet Key Exchange Vulnerability	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Internet Key Exchange Denial of Service Vulnerability	CVE-2012-0381	7.8
cisco-sa-20120328-msdp Cisco IOS Software Multicast Source Discovery Protocol Vulnerability	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Software Multicast Source Discovery Protocol Denial of Service Vulnerability	CVE-2012-0382	7.1
cisco-sa-20120328-pai Cisco IOS Software Command Authorization Bypass	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Software HTTP Request Processing Arbitrary Command Execution Vulnerability	CVE-2012-0384	8.5
cisco-sa-20120328-smartinstall Cisco IOS Software Smart Install Denial of Service Vulnerability	Identifying and Mitigating Exploitation of the Cisco IOS Software Smart Install Denial of Service Vulnerability	Cisco IOS Software Smart Install Denial of Service Vulnerability	CVE-2012-0385	7.8
cisco-sa-20120328-ssh Cisco IOS Software Reverse SSH Denial of Service Vulnerability	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Software Reverse SSH Vulnerability	CVE-2012-0386	7.8
cisco-sa-20120328-rsvp Cisco IOS Software RSVP Denial of Service Vulnerability	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Software RSVP Denial of Service Vulnerability	CVE-2012-1311	7.8
cisco-sa-20120328-mace Multiple Vulnerabilities in Cisco IOS Software Traffic Optimization Features	Refer to the Workarounds section of the associated Cisco Security Advisory	Cisco IOS Measurement, Aggregation, and Correlation Engine Denial of Service Vulnerability	CVE-2012-1312	7.1
		Cisco IOS Wide Area Application Services Denial of Service Vulnerability	CVE-2012-1314	7.8

Return to Cisco Security Intelligence Operations