Lucene search

CiscoCISCO-SA-20110928-IPV6MPLS

HistorySep 28, 2011 - 4:00 p.m.

Cisco IOS Software IP Version 6 over Multiprotocol Label Switching Vulnerabilities

2011-09-2816:00:00

tools.cisco.com

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

52.0%

JSON

Cisco IOS Software is affected by two vulnerabilities that cause a
Cisco IOS device to reload when processing IP version 6 (IPv6) packets over a
Multiprotocol Label Switching (MPLS) domain. These vulnerabilities are:

Crafted IPv6 Packet May Cause MPLS-Configured Device to Reload


ICMPv6 Packet May Cause MPLS-Configured Device to Reload

Cisco has released software updates that address these vulnerabilities.

Workarounds that mitigate these vulnerabilities are available.

This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110928-ipv6mpls[“[[Publication_URL]]”].

Note: The September 28, 2011, Cisco IOS Software
Security Advisory bundled publication includes ten Cisco Security Advisories.
Nine of the advisories address vulnerabilities in Cisco IOS Software, and one
advisory addresses a vulnerability in Cisco Unified Communications Manager.
Each advisory lists the Cisco IOS Software releases that correct the
vulnerability or vulnerabilities detailed in the advisory as well as the Cisco
IOS Software releases that correct all vulnerabilities in the September 2011
Bundled Publication.

Individual publication links are in “Cisco Event Response:
Semiannual Cisco IOS Software Security Advisory Bundled Publication” at the
following link:

http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep11.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep11.html”]

[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep11.html”]

Affected configurations

Vulners

Node

ciscoiosMatch12.2se

ciscoiosMatch12.2zi

ciscoiosMatch15.0m

ciscoiosMatch15.0xa

ciscoiosMatch15.1t

ciscoiosMatch15.1xb

ciscoiosMatch12.2sre

ciscoiosMatch15.0s

ciscoiosMatch15.1s

ciscoiosMatch15.1m

ciscoiosMatch15.1gc

ciscoiosMatch15.0mr

ciscocisco_iosMatchanyxe

ciscoiosMatch12.2\(58\)se

ciscoiosMatch12.2\(58\)se1

ciscoiosMatch12.2\(33\)zi

ciscoiosMatch15.0\(1\)m1

ciscoiosMatch15.0\(1\)m5

ciscoiosMatch15.0\(1\)m4

ciscoiosMatch15.0\(1\)m3

ciscoiosMatch15.0\(1\)m2

ciscoiosMatch15.0\(1\)m6

ciscoiosMatch15.0\(1\)m

ciscoiosMatch15.0\(1\)xa2

ciscoiosMatch15.0\(1\)xa4

ciscoiosMatch15.0\(1\)xa1

ciscoiosMatch15.0\(1\)xa3

ciscoiosMatch15.0\(1\)xa

ciscoiosMatch15.0\(1\)xa5

ciscoiosMatch15.1\(2\)t

ciscoiosMatch15.1\(1\)t1

ciscoiosMatch15.1\(2\)t0a

ciscoiosMatch15.1\(1\)t3

ciscoiosMatch15.1\(2\)t3

ciscoiosMatch15.1\(1\)t2

ciscoiosMatch15.1\(3\)t

ciscoiosMatch15.1\(2\)t2a

ciscoiosMatch15.1\(3\)t1

ciscoiosMatch15.1\(1\)t

ciscoiosMatch15.1\(2\)t2

ciscoiosMatch15.1\(2\)t1

ciscoiosMatch15.1\(1\)xb

ciscoiosMatch15.1\(1\)xb3

ciscoiosMatch15.1\(1\)xb1

ciscoiosMatch15.1\(1\)xb2

ciscoiosMatch15.1\(4\)xb4

ciscoiosMatch12.2\(33\)sre1

ciscoiosMatch12.2\(33\)sre2

ciscoiosMatch12.2\(33\)sre3

ciscoiosMatch12.2\(33\)sre

ciscoiosMatch12.2\(33\)sre0a

ciscoiosMatch15.0\(1\)s2

ciscoiosMatch15.0\(1\)s1

ciscoiosMatch15.0\(1\)s

ciscoiosMatch15.0\(1\)s3a

ciscoiosMatch15.1\(2\)s

ciscoiosMatch15.1\(1\)s

ciscoiosMatch15.1\(1\)s1

ciscoiosMatch15.1\(1\)s2

ciscoiosMatch15.1\(2\)s1

ciscoiosMatch15.1\(4\)m

ciscoiosMatch15.1\(4\)m0a

ciscoiosMatch15.1\(4\)m0b

ciscoiosMatch15.1\(2\)gc

ciscoiosMatch15.1\(2\)gc1

ciscoiosMatch15.0\(1\)mr

ciscoiosMatch15.0\(2\)mr

ciscocisco_iosMatchanyxe

CPENameOperatorVersion
ioseq12.2SE
ioseq12.2ZI
ioseq15.0M
ioseq15.0XA
ioseq15.1T
ioseq15.1XB
ioseq12.2SRE
ioseq15.0S
ioseq15.1S
ioseq15.1M

Name	Operator	Version
ios	eq	12.2SE
ios	eq	12.2ZI
ios	eq	15.0M
ios	eq	15.0XA
ios	eq	15.1T
ios	eq	15.1XB
ios	eq	12.2SRE
ios	eq	15.0S
ios	eq	15.1S
ios	eq	15.1M

Rows per page:

1-10 of 681

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110928-ipv6mpls

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

52.0%

JSON

Related for CISCO-SA-20110928-IPV6MPLS