AttackerKBAKB:9092C077-BBDE-4CBB-A03F-6303E4A290E2CVE-2010-3035
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.024 Low
EPSS
Percentile
88.7%
Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not properly handle unrecognized transitive attributes, which allows remote attackers to cause a denial of service (peering reset) via a crafted prefix announcement, as demonstrated in the wild in August 2010 with attribute type code 99, aka Bug ID CSCti62211.
Recent assessments:
Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0
References
mailman.nanog.org/pipermail/nanog/2010-August/024837.html
osvdb.org/67696
secunia.com/advisories/41190
www.cisco.com/en/US/products/products_security_advisory09186a0080b4411f.shtml
www.securitytracker.com/id?1024371
www.vupen.com/english/advisories/2010/2227
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3035
exchange.xforce.ibmcloud.com/vulnerabilities/61443
Related
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.024 Low
EPSS
Percentile
88.7%