Published: 24/09/2013 Updated: 29/08/2017

CVSS v2 Base Score: 5.4 | Impact Score: 6.9 | Exploitability Score: 4.9

VMScore: 481

Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

Buffer overflow in the Smart Call Home feature in the fabric interconnect in Cisco Unified Computing System (UCS) allows remote malicious users to cause a denial of service by reading and forging control messages associated with Smart Call Home reports, aka Bug ID CSCtl00198.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco unified computing system -

A vulnerability in Smart Call Home functionality in the fabric interconnect (FI) of Cisco Unified Computing System could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition The vulnerability is due to a buffer overflow in the Smart Call Home function An attacker could exploit this vulnerability by intercepting ...

CRIME ATTACK

CE4010-Applied-Cryptography CRIME ATTACK Exploiting CVE-2012-4094 to retrieve secret cookie from HTTP headers Client: To act as an attacker to retrieve cookies via sending a request to the server and executing CRIME attack to retrieve said secret cookies Server: AES Counter Mode Encryption - To mimic a server that encrypts their secret cookie in AES format and DEFLATE compres

CWE-119 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4094 http://www.securitytracker.com/id/1029085 https://exchange.xforce.ibmcloud.com/vulnerabilities/87370 https://nvd.nist.gov https://github.com/uztra4/CE4010-Applied-Cryptography http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20130924-CVE-2012-4094

CVE-2012-4094

Vulnerability Summary

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect