Cisco IOS XE Multiple Vulnerabilities
Last Update Date:
31 Oct 2013 15:27
Release Date:
31 Oct 2013
3654
Views
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities have been identified in Cisco IOS XE. A remote user can cause denial of service conditions.
- A remote user can send specially crafted ICMP error packets through the target device to trigger a flaw in the Zone-Based Firewall (ZBFW) TCP or UDP inspection feature and cause the target device to reload.
- A remote user can send specially crafted PPTP packets through the target device to trigger a flaw in the PPTP ALG feature and cause the target device to reload.
- A remote user can send specially crafted TCP packet through the target device to trigger a flaw in the ALG and NAT features to cause the target device to reload.
- A remote user can send specially crafted IPv4 or IPv6 EoGRE packets through the target device that is configured with an EoGRE interface to cause the target device to reload.
Impact
- Denial of Service
System / Technologies affected
- IOS XE for 1000 Series ASR; 3.4.x, 3.5.x, 3.7.x, 3.8.x, 3.9.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- The vendor has issued a fix (3.4.2S, 3.5.1S, 3.7.3S, 3.8.1S, 3.9.2S).
Vulnerability Identifier
Source
Related Link
Share with