Cisco Application Control Engine prior A4(2.3), A5(1.1) race condition

| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 4.6 | $0-$5k | 0.00 |
Summary
A vulnerability identified as problematic has been detected in Cisco Application Control Engine. This issue affects some unknown processing. This manipulation causes race condition. This vulnerability is handled as CVE-2012-3063. There is not any exploit available. You should upgrade the affected component.
Details
A vulnerability classified as problematic was found in Cisco Application Control Engine. Affected by this vulnerability is some unknown functionality. The manipulation with an unknown input leads to a race condition vulnerability. The CWE definition for the vulnerability is CWE-362. The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently. As an impact it is known to affect confidentiality, and integrity. The summary by CVE is:
Cisco Application Control Engine (ACE) before A4(2.3) and A5 before A5(1.1), when multicontext mode is enabled, does not properly share a management IP address among multiple contexts, which allows remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances, and read or modify configuration settings, via a login attempt to a context, aka Bug ID CSCts30631, a different vulnerability than CVE-2012-3058.
The weakness was released 06/20/2012 with Cisco as cisco-sa-20120620-ace as confirmed advisory (Website). The advisory is shared at tools.cisco.com. This vulnerability is known as CVE-2012-3063 since 05/30/2012. The exploitation appears to be difficult. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Neither technical details nor an exploit are publicly available.
The vulnerability scanner Nessus provides a plugin with the ID 69914 (Cisco Application Control Engine Login Administrator IP Address Overlap (cisco-sa-20120620-ace)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family CISCO.
Upgrading to version A4(2.3), A5(1.1) eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (76460), Tenable (69914), SecurityFocus (BID 54129†), OSVDB (83102†) and Secunia (SA49646†). If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Product
Vendor
Name
License
Website
- Vendor: https://www.cisco.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 4.8VulDB Meta Temp Score: 4.6
VulDB Base Score: 4.8
VulDB Temp Score: 4.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Race conditionCWE: CWE-362
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 69914
Nessus Name: Cisco Application Control Engine Login Administrator IP Address Overlap (cisco-sa-20120620-ace)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Port: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: Application Control Engine A4(2.3), A5(1.1)
Timeline
05/30/2012 🔍06/20/2012 🔍
06/20/2012 🔍
06/20/2012 🔍
06/20/2012 🔍
06/20/2012 🔍
06/20/2012 🔍
06/21/2012 🔍
06/22/2012 🔍
06/25/2012 🔍
06/27/2012 🔍
09/16/2013 🔍
03/25/2021 🔍
Sources
Vendor: cisco.comAdvisory: cisco-sa-20120620-ace
Organization: Cisco
Status: Confirmed
CVE: CVE-2012-3063 (🔍)
GCVE (CVE): GCVE-0-2012-3063
GCVE (VulDB): GCVE-100-5581
IAVM: 🔍
X-Force: 76460
SecurityFocus: 54129 - Cisco Application Control Engine Administrator IP Address Overlap Security Bypass Vulnerability
Secunia: 49646 - Cisco ACE Products Security Bypass Weakness, Not Critical
OSVDB: 83102
SecurityTracker: 1027188 - Cisco Application Control Engine IP Address Overlap May Let Remote Authenticated Administrators Login to the Incorrect Context
Vulnerability Center: 35433 - [cisco-sa-20120620-ace] Cisco Application Control Engine Multicontext Mode Administrators Security Bypass Vulnerability, High
Entry
Created: 06/25/2012 18:14Updated: 03/25/2021 18:04
Changes: 06/25/2012 18:14 (70), 04/14/2017 13:40 (12), 03/25/2021 18:04 (3)
Complete: 🔍
Cache ID: 216::103
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
No comments yet. Languages: en.
Please log in to comment.