The MPLS-OPS Archive[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index][Thread Index][Author Index][Subject Index] Cisco Vulnerability in MPLS
Title: Cisco Vulnerability in MPLS FYI: This affects routers that are MPLS-capable even if MPLS isn’t enabled.. More info at: http://www.cisco.com/warp/public/707/cisco-sa-20050126-les.shtml ----- Cisco IOS MPLS Packet Processing Denial of Service Secunia Advisory: SA14031 Print Advisory Release Date: 2005-01-27 Critical: Less critical Impact: DoS Where: From local network Solution Status: Vendor Patch OS: Cisco IOS 12.x Cisco IOS R12.x Select a product and view a complete list of all Patched/Unpatched Secunia advisories affecting it. Description: A vulnerability has been reported in Cisco IOS, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the processing of MPLS (Multi Protocol Label Switching) packets. This can be exploited to cause a vulnerable device to reload by sending a specially crafted MPLS packet to an interface with MPLS disabled. Successful exploitation requires support for MPLS; however, it does not have to be configured. The vulnerability affects the following products with release trains based on 12.1T, 12.2, 12.2T, 12.3, and 12.3T: * 2600 and 2800 series routers * 3600, 3700 and 3800 series routers * 4500 and 4700 series routers * 5300, 5350 and 5400 series Access Servers Solution: See patch matrix in the vendor advisory for information about fixes. http://www.cisco.com/warp/public...o-sa-20050126-les.shtml#software Provided and/or discovered by: Reported by vendor. Original Advisory: http://www.cisco.com/warp/public/707/cisco-sa-20050126-les.shtml Other References: US-CERT VU#583638: http://www.kb.cert.org/vuls/id/583638 Please note: The information, which this Secunia Advisory is based upon, comes from third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others. |
|