CVE-2012-6026

Published: Mar 5, 2013Modified: Apr 29, 2026

6.1

Vector

AV:A/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 6.5 / Impact: 6.9

Source: NVD

Description

The HTTP Profiler on the Cisco Aironet Access Point with software 15.2 and earlier does not properly manage buffers, which allows remote attackers to cause a denial of service (device reload) via crafted HTTP requests, aka Bug ID CSCuc62460.

Affected (4)

Products: Cisco: Aironet Access Point Software

1 product

Aironet Access Point Software

Configuration A

4 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Aironet Access Point Software	Version 12.4
Cisco Aironet Access Point Software	Version 15.2
Cisco Aironet Access Point Software	Version 7.3
Cisco Aironet Access Point Software	Version 7.4

Running on/with	Platform Versions
Cisco Aironet Access Point	All versions

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-6026

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=28436

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-6026

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=28436

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.