Cisco Event Response: Semi-Annual Cisco IOS Software Security Advisory Bundled Publication

March 28, 2012

Cisco released its semi-annual Cisco IOS Software Security Advisory Bundled Publication on March 28, 2012. In direct response to customer feedback, Cisco releases bundles of Cisco IOS Software Security Advisories on the fourth Wednesday of the month in March and September of each calendar year. This publication includes nine Security Advisories that address vulnerabilities in Cisco IOS Software. Exploitation of the individual vulnerabilities could result in denial of service conditions or, in one case, allow an authenticated user to exceed their authorization level and gain administrative control over the device.

Use the Cisco IOS Software Checker to quickly determine if a given Cisco IOS Software release is exposed to Cisco product vulnerabilities.

 

Event Intelligence

The following table identifies Cisco Security Intelligence Operations content and Cisco mitigation information that is associated with this Cisco IOS Software Security Advisory bundled publication:

Cisco Security Advisory
Cisco Applied Mitigation Bulletin
Cisco IntelliShield Alert CVE ID
Search CVEs
CVSS
Base Score
CVSS Q&A

cisco-sa-20120328-zbfw

Cisco IOS Software Zone-Based Firewall Vulnerabilities

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Zone-Based Firewall H.323 Inspection Engine Denial of Service Vulnerability CVE-2012-0388 7.8
Cisco IOS Software Zone-Based Firewall HTTP Inspection Engine Denial of Service Vulnerability CVE-2012-0387 7.8
Cisco IOS Software Zone-Based Firewall Crafted IP Packets Denial of Service Vulnerability CVE-2012-1310 7.8
Cisco IOS Software Zone-Based Firewall Session Initiation Protocol Engine Denial of Service Vulnerability CVE-2012-1315 7.8

cisco-sa-20120328-nat

Cisco IOS Software Network Address Translation Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Network Address Translation Session Initiation Protocol Denial of Service Vulnerability CVE-2012-0383 7.8

cisco-sa-20120328-ike

Cisco IOS Software Internet Key Exchange Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Internet Key Exchange Denial of Service Vulnerability CVE-2012-0381 7.8

cisco-sa-20120328-msdp

Cisco IOS Software Multicast Source Discovery Protocol Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Multicast Source Discovery Protocol Denial of Service Vulnerability CVE-2012-0382 7.1

cisco-sa-20120328-pai

Cisco IOS Software Command Authorization Bypass

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software HTTP Request Processing Arbitrary Command Execution Vulnerability CVE-2012-0384 8.5

cisco-sa-20120328-smartinstall

Cisco IOS Software Smart Install Denial of Service Vulnerability

Cisco IOS Software Smart Install Denial of Service Vulnerability CVE-2012-0385 7.8

cisco-sa-20120328-ssh

Cisco IOS Software Reverse SSH Denial of Service Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Reverse SSH Vulnerability CVE-2012-0386 7.8

cisco-sa-20120328-rsvp

Cisco IOS Software RSVP Denial of Service Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software RSVP Denial of Service Vulnerability CVE-2012-1311 7.8

cisco-sa-20120328-mace

Multiple Vulnerabilities in Cisco IOS Software Traffic Optimization Features

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Measurement, Aggregation, and Correlation Engine Denial of Service Vulnerability CVE-2012-1312 7.1
Cisco IOS Wide Area Application Services Denial of Service Vulnerability CVE-2012-1314 7.8

Return to Cisco Security Intelligence Operations