CVE-2012-1338

Loading...

General

Score:6.3/10.0
Severity:Medium
Category:Interaction Error

Impact Metrics

Confidentiality:None
Integrity:None
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:Single

Published on 06/08/12 - Updated on 02/04/13

Description

Cisco IOS 15.0 and 15.1 on Catalyst 3560 and 3750 series switches allows remote authenticated users to cause a denial of service (device reload) by completing local web authentication quickly, aka Bug ID CSCts88664.

Category: Interaction Error

CWE-362 (Race Conditions)
The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

Security Notices

US National Vulnerability DatabaseCVE-2012-1338

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
ciscocatalyst_3560
ciscocatalyst_3560-e
ciscocatalyst_3560-x
ciscocatalyst_3750
ciscocatalyst_3750-e
ciscocatalyst_3750-x
ciscocatalyst_3750g
ciscocatalyst_3750_metro
ciscoios

Share this vulnerability with:

Twitter Facebook LinkedIn Mail