{ "id": "CVE-2011-3273", "sourceIdentifier": "ykramarz@cisco.com", "published": "2011-10-03T23:55:03.673", "lastModified": "2012-05-14T04:00:00.000", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "Memory leak in Cisco IOS 15.0 through 15.1, when IPS or Zone-Based Firewall (aka ZBFW) is configured, allows remote attackers to cause a denial of service (memory consumption or device crash) via vectors that trigger many session creation flows, aka Bug ID CSCti79848." }, { "lang": "es", "value": "Fallo de memoria en Cisco IOS v15.0 hasta v15.1, cuando un IPS o Cortafuegos Zone-Based (tambi\u00e9n conocido como ZBFW) es configurado, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (agotamiento de memoria o ca\u00edda del dispositivo) a trav\u00e9s de vectores que disparan varias sesiones de creaci\u00f3n de hilos, tambi\u00e9n conocido como Bug ID CSCti79848." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8 }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-399" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*", "matchCriteriaId": "CF87CC9A-1AF5-4DB4-ACE5-DB938D3B2F84" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.0m:*:*:*:*:*:*:*", "matchCriteriaId": "3D03374C-7EF0-4455-839E-09CA4F2E85BC" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.0sg:*:*:*:*:*:*:*", "matchCriteriaId": "58870B6A-55D2-4BFA-89F9-9332205CC130" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.0xa:*:*:*:*:*:*:*", "matchCriteriaId": "EC6EF56C-032C-43F6-A979-E18BEA0E16A6" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.0xo:*:*:*:*:*:*:*", "matchCriteriaId": "61D28B5C-F578-47E1-A8AC-A79D8A7F340C" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*", "matchCriteriaId": "EB41294E-F3DF-4F1E-A4C8-E90B21A88836" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.1gc:*:*:*:*:*:*:*", "matchCriteriaId": "B8665036-2C40-498A-B022-F6DA288D1581" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.1m:*:*:*:*:*:*:*", "matchCriteriaId": "0F2359A4-8494-4BBA-85E5-C4E66D9362CE" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.1s:*:*:*:*:*:*:*", "matchCriteriaId": "8A9B1D5E-02CA-4949-8ACB-9B40642816B6" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.1t:*:*:*:*:*:*:*", "matchCriteriaId": "5FAFA073-B16F-475F-B68D-8FE9135AB0A4" }, { "vulnerable": true, "criteria": "cpe:2.3:o:cisco:ios:15.1xb:*:*:*:*:*:*:*", "matchCriteriaId": "34137E45-7EC0-4350-9F6D-B427CE07D693" } ] } ] } ], "references": [ { "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=24123", "source": "ykramarz@cisco.com" }, { "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d57.shtml", "source": "ykramarz@cisco.com", "tags": [ "Vendor Advisory" ] } ] }