Lucene search

CiscoCISCO-SA-20070110-DLSW

HistoryJan 10, 2007 - 4:00 p.m.

DLSw Vulnerability

2007-01-1016:00:00

tools.cisco.com

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.034 Low

EPSS

Percentile

91.3%

JSON

A vulnerability exists in the Data-link Switching (DLSw) feature in Cisco IOS where an invalid value in a DLSw message could result in a reload of the DLSw device. Successful exploitation of this vulnerability requires that an attacker be able to establish a DLSw connection to the device.

There are workarounds available for this vulnerability, as detailed in the Workarounds [“#workarounds”] section below.

This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070110-dlsw [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070110-dlsw”]

CPENameOperatorVersion
ioseq12.1XI
ioseq12.0S
ioseq12.0ST
ioseq12.2B
ioseq12.2S
ioseq12.2YA
ioseq12.2YC
ioseq12.2YD
ioseq12.2YH
ioseq12.0XE

Name	Operator	Version
ios	eq	12.1XI
ios	eq	12.0S
ios	eq	12.0ST
ios	eq	12.2B
ios	eq	12.2S
ios	eq	12.2YA
ios	eq	12.2YC
ios	eq	12.2YD
ios	eq	12.2YH
ios	eq	12.0XE

Rows per page:

1-10 of 8491

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070110-dlsw

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.034 Low

EPSS

Percentile

91.3%

JSON

Related for CISCO-SA-20070110-DLSW