QwikSec

Security Database

CVE

CWE

Training

CVE-2012-0338

Published: May 2, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote attackers to establish SSH connections from arbitrary source IP addresses via a standard SSH client, aka Bug ID CSCsv86113.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://supportforums.cisco.com/thread/2030226

x_refsource_CONFIRM

http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/release/notes/caveats_SXH_rebuilds.html

x_refsource_CONFIRM

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.