CVE-2017-12231

Severity

78%

Complexity

99%

Confidentiality

115%

A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS 12.4 through 15.6 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to the improper translation of H.323 messages that use the Registration, Admission, and Status (RAS) protocol and are sent to an affected device via IPv4 packets. An attacker could exploit this vulnerability by sending a crafted H.323 RAS packet through an affected device. A successful exploit could allow the attacker to cause the affected device to crash and reload, resulting in a DoS condition. This vulnerability affects Cisco devices that are configured to use an application layer gateway with NAT (NAT ALG) for H.323 RAS messages. By default, a NAT ALG is enabled for H.323 RAS messages. Cisco Bug IDs: CSCvc57217.

CVSS 3.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

CVSS 2.0 Base Score 7.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C).

Overview

Type

Cisco IOS

First reported 7 years ago

2017-09-29 01:34:00

Last updated 5 years ago

2019-10-09 23:22:00

Affected Software

Cisco IOS 12.4(25E)JAO3A

12.4\(25e\)jao3a

Cisco IOS 12.4(25E)JAO20S

12.4\(25e\)jao20s

Cisco IOS 12.4(25E)JAP1N

12.4\(25e\)jap1n

Cisco IOS 12.4(25E)JAP9

12.4\(25e\)jap9

Cisco IOS 15.1(2)SG7A

15.1\(2\)sg7a

Cisco IOS 15.2(2)E3

15.2\(2\)e3

Cisco IOS 15.2(2)E5B

15.2\(2\)e5b

Cisco IOS 15.2(3)EX

15.2\(3\)ex

Cisco IOS 15.2(4)EC

15.2\(4\)ec

Cisco IOS 15.2(4)M8

15.2\(4\)m8

Cisco IOS 15.2(4)M9

15.2\(4\)m9

Cisco IOS 15.2(4)M10

15.2\(4\)m10

Cisco IOS 15.2(4)M11

15.2\(4\)m11

Cisco IOS 15.2(4)S7

15.2\(4\)s7

Cisco IOS 15.2(5)E2A

15.2\(5\)e2a

Cisco IOS 15.2(5A)E1

15.2\(5a\)e1

Cisco IOS 15.3(3)JBB6A

15.3\(3\)jbb6a

Cisco IOS 15.3(3)JNP2

15.3\(3\)jnp2

Cisco IOS 15.3(3)JPB2

15.3\(3\)jpb2

Cisco IOS 15.3(3)M6

15.3\(3\)m6

Cisco IOS 15.3(3)M7

15.3\(3\)m7

Cisco IOS 15.3(3)M8

15.3\(3\)m8

Cisco IOS 15.3(3)S6

15.3\(3\)s6

Cisco IOS 15.4(1)T4

15.4\(1\)t4

Cisco IOS 15.4(2)S4

15.4\(2\)s4

Cisco IOS 15.4(2)T4

15.4\(2\)t4

Cisco IOS 15.4(3)M3

15.4\(3\)m3

Cisco IOS 15.4(3)M4

15.4\(3\)m4

Cisco IOS 15.4(3)M5

15.4\(3\)m5

Cisco IOS 15.4(3)M6

15.4\(3\)m6

Cisco IOS 15.4(3)S3

15.4\(3\)s3

Cisco IOS 15.4(3)S4

15.4\(3\)s4

Cisco IOS 15.4(3)S7

15.4\(3\)s7

Cisco IOS 15.5(1)S2

15.5\(1\)s2

Cisco IOS 15.5(1)S3

15.5\(1\)s3

Cisco IOS 15.5(1)S4

15.5\(1\)s4

Cisco IOS 15.5(1)T2

15.5\(1\)t2

Cisco IOS 15.5(1)T3

15.5\(1\)t3

Cisco IOS 15.5(1)T4

15.5\(1\)t4

Cisco IOS 15.5(2)s

15.5\(2\)s

Cisco IOS 15.5(2)S1

15.5\(2\)s1

Cisco IOS 15.5(2)S2

15.5\(2\)s2

Cisco IOS 15.5(2)S3

15.5\(2\)s3

Cisco IOS 15.5(2)S4

15.5\(2\)s4

Cisco IOS 15.5(2)T

15.5\(2\)t

Cisco IOS 15.5(2)T1

15.5\(2\)t1

Cisco IOS 15.5(2)T2

15.5\(2\)t2

Cisco IOS 15.5(2)T3

15.5\(2\)t3

Cisco IOS 15.5(2)T4

15.5\(2\)t4

Cisco IOS 15.5(3)M

15.5\(3\)m

Cisco IOS 15.5(3)M0A

15.5\(3\)m0a

Cisco IOS 15.5(3)m1

15.5\(3\)m1

Cisco IOS 15.5(3)M2

15.5\(3\)m2

Cisco IOS 15.5(3)M3

15.5\(3\)m3

Cisco IOS 15.5(3)M4

15.5\(3\)m4

Cisco IOS 15.5(3)S

15.5\(3\)s

Cisco IOS 15.5(3)S0A

15.5\(3\)s0a

Cisco IOS 15.5(3)s1

15.5\(3\)s1

Cisco IOS 15.5(3)S1A

15.5\(3\)s1a

Cisco IOS 15.5(3)S2

15.5\(3\)s2

Cisco IOS 15.5(3)S3

15.5\(3\)s3

Cisco IOS 15.6(1)t0a

15.6\(1\)t0a

Cisco IOS 15.6(2)SP

15.6\(2\)sp

Cisco IOS 15.6(2)SP1

15.6\(2\)sp1

Cisco IOS 15.6(3)M

15.6\(3\)m

Cisco IOS 15.6(3)M1b

15.6\(3\)m1b

References

101039

Third Party Advisory, VDB Entry

1039449