CVE-2020-3566 - Denial of service vulnerability in Cisco IOS XR

2020-08-29T00:00:00
ID AKB:0526BD48-C539-4FE8-AC29-3DE007A30DD2
Type attackerkb
Reporter AttackerKB
Modified 2020-09-01T00:00:00

Description

A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust process memory of an affected device. The vulnerability is due to insufficient queue management for Internet Group Management Protocol (IGMP) packets. An attacker could exploit this vulnerability by sending crafted IGMP traffic to an affected device. A successful exploit could allow the attacker to cause memory exhaustion, resulting in instability of other processes. These processes may include, but are not limited to, interior and exterior routing protocols. Cisco will release software updates that address this vulnerability.

Recent assessments:

ccondon-r7 at August 31, 2020 11:33pm UTC reported:

At face value, this doesn’t seem to be a terribly high-value vuln from an attacker point of view. That’s not to say that impact to availability and disruption of business processes isn’t high-impact for infrastructure and service providers, just that the vulnerability is a denial of service that currently doesn’t look to offer attackers useful access. That changes pretty quickly if it turns out DoS exploitation gives rise to a different threat vector.

Assessed Attacker Value: 2