Lucene search

CiscoCISCO-SA-20130925-RSVP

HistorySep 25, 2013 - 4:00 p.m.

Cisco IOS Software Resource Reservation Protocol Interface Queue Wedge Vulnerability

2013-09-2516:00:00

tools.cisco.com

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.6%

JSON

A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger an interface queue wedge on the affected device.

The vulnerability is due to improper parsing of UDP RSVP packets. An attacker could exploit this vulnerability by sending UDP port 1698 RSVP packets to the vulnerable device. An exploit could cause Cisco IOS Software and Cisco IOS XE Software to incorrectly process incoming packets, resulting in an interface queue wedge, which can lead to loss of connectivity, loss of routing protocol adjacency, and other denial of service (DoS) conditions.

Cisco has released software updates that address this vulnerability.

Workarounds that mitigate this vulnerability are available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-rsvp[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-rsvp”]

Note: The September 25, 2013, Cisco IOS Software Security Advisory bundled publication includes eight Cisco Security Advisories. All advisories address vulnerabilities in Cisco IOS Software. Each Cisco IOS Software Security Advisory lists the Cisco IOS Software releases that correct the vulnerability or vulnerabilities detailed in the advisory as well as the Cisco IOS Software releases that correct all Cisco IOS Software vulnerabilities in the September 2013 bundled publication.

Individual publication links are in “Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication” at the following link:

http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep13.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep13.html”]

Affected configurations

Vulners

Node

ciscoiosMatch15.0m

ciscoiosMatch15.0xa

ciscoiosMatch15.1t

ciscoiosMatch15.1xb

ciscoiosMatch15.2s

ciscoiosMatch15.3t

ciscoiosMatch15.1s

ciscoiosMatch15.1m

ciscoiosMatch15.1gc

ciscoiosMatch15.0sy

ciscoiosMatch15.2m

ciscoiosMatch15.2gc

ciscoiosMatch15.1sy

ciscoiosMatch15.3s

ciscoiosMatch15.2e

ciscoiosMatch15.1mra

ciscoiosMatch15.2sc

ciscoiosMatch15.2sd

ciscoiosMatch15.2jaz

ciscoiosMatch15.1svg

ciscoiosMatch15.1svh

ciscoiosMatch15.1svi

ciscoiosMatch15.6t

ciscoiosMatch15.1svj

ciscoiosMatch15.1svr

ciscoiosMatch15.1svs

ciscoiosMatch15.1svt

ciscoiosMatch15.1svu

ciscoiosMatch15.1svv

ciscoiosMatch15.1svw

ciscoiosMatch15.1svx

ciscorvs4000_softwareMatch3.7s

ciscorvs4000_softwareMatch3.8s

ciscoiosMatch15.0\(1\)m1

ciscoiosMatch15.0\(1\)m5

ciscoiosMatch15.0\(1\)m4

ciscoiosMatch15.0\(1\)m3

ciscoiosMatch15.0\(1\)m2

ciscoiosMatch15.0\(1\)m6

ciscoiosMatch15.0\(1\)m

ciscoiosMatch15.0\(1\)m7

ciscoiosMatch15.0\(1\)m10

ciscoiosMatch15.0\(1\)m9

ciscoiosMatch15.0\(1\)m8

ciscoiosMatch15.0\(1\)m6a

ciscoiosMatch15.0\(1\)xa2

ciscoiosMatch15.0\(1\)xa4

ciscoiosMatch15.0\(1\)xa1

ciscoiosMatch15.0\(1\)xa3

ciscoiosMatch15.0\(1\)xa

ciscoiosMatch15.0\(1\)xa5

ciscoiosMatch15.1\(2\)t

ciscoiosMatch15.1\(1\)t4

ciscoiosMatch15.1\(3\)t2

ciscoiosMatch15.1\(1\)t1

ciscoiosMatch15.1\(2\)t0a

ciscoiosMatch15.1\(3\)t3

ciscoiosMatch15.1\(1\)t3

ciscoiosMatch15.1\(2\)t3

ciscoiosMatch15.1\(2\)t4

ciscoiosMatch15.1\(1\)t2

ciscoiosMatch15.1\(3\)t

ciscoiosMatch15.1\(2\)t2a

ciscoiosMatch15.1\(3\)t1

ciscoiosMatch15.1\(1\)t

ciscoiosMatch15.1\(2\)t2

ciscoiosMatch15.1\(2\)t1

ciscoiosMatch15.1\(2\)t5

ciscoiosMatch15.1\(3\)t4

ciscoiosMatch15.1\(1\)t5

ciscoiosMatch15.1\(1\)xb

ciscoiosMatch15.1\(1\)xb3

ciscoiosMatch15.1\(1\)xb1

ciscoiosMatch15.1\(1\)xb2

ciscoiosMatch15.1\(4\)xb4

ciscoiosMatch15.1\(4\)xb5

ciscoiosMatch15.1\(4\)xb6

ciscoiosMatch15.1\(4\)xb5a

ciscoiosMatch15.1\(4\)xb7

ciscoiosMatch15.1\(4\)xb8

ciscoiosMatch15.1\(4\)xb8a

ciscoiosMatch15.2\(1\)s

ciscoiosMatch15.2\(2\)s

ciscoiosMatch15.2\(1\)s1

ciscoiosMatch15.2\(4\)s

ciscoiosMatch15.2\(1\)s2

ciscoiosMatch15.2\(2\)s1

ciscoiosMatch15.2\(2\)s2

ciscoiosMatch15.2\(2\)s0a

ciscoiosMatch15.2\(2\)s0c

ciscoiosMatch15.2\(2\)s0d

ciscoiosMatch15.2\(4\)s1

ciscoiosMatch15.2\(4\)s2

ciscoiosMatch15.2\(4\)s3

ciscoiosMatch15.2\(4\)s0c

ciscoiosMatch15.2\(4\)s1c

ciscoiosMatch15.2\(4\)s3a

ciscoiosMatch15.3\(1\)t

ciscoiosMatch15.3\(2\)t

ciscoiosMatch15.3\(1\)t1

ciscoiosMatch15.1\(2\)s

ciscoiosMatch15.1\(1\)s

ciscoiosMatch15.1\(1\)s1

ciscoiosMatch15.1\(3\)s

ciscoiosMatch15.1\(1\)s2

ciscoiosMatch15.1\(2\)s1

ciscoiosMatch15.1\(2\)s2

ciscoiosMatch15.1\(3\)s1

ciscoiosMatch15.1\(3\)s0a

ciscoiosMatch15.1\(3\)s2

ciscoiosMatch15.1\(3\)s4

ciscoiosMatch15.1\(3\)s3

ciscoiosMatch15.1\(3\)s5

ciscoiosMatch15.1\(3\)s5a

ciscoiosMatch15.1\(4\)m3

ciscoiosMatch15.1\(4\)m

ciscoiosMatch15.1\(4\)m1

ciscoiosMatch15.1\(4\)m2

ciscoiosMatch15.1\(4\)m6

ciscoiosMatch15.1\(4\)m5

ciscoiosMatch15.1\(4\)m4

ciscoiosMatch15.1\(4\)m0a

ciscoiosMatch15.1\(4\)m0b

ciscoiosMatch15.1\(4\)m3a

ciscoiosMatch15.1\(2\)gc

ciscoiosMatch15.1\(2\)gc1

ciscoiosMatch15.1\(2\)gc2

ciscoiosMatch15.1\(4\)gc

ciscoiosMatch15.1\(4\)gc1

ciscoiosMatch15.0\(1\)sy

ciscoiosMatch15.0\(1\)sy1

ciscoiosMatch15.0\(1\)sy2

ciscoiosMatch15.0\(1\)sy3

ciscoiosMatch15.0\(1\)sy4

ciscoiosMatch15.2\(4\)m

ciscoiosMatch15.2\(4\)m1

ciscoiosMatch15.2\(4\)m2

ciscoiosMatch15.2\(4\)m3

ciscoiosMatch15.2\(1\)gc

ciscoiosMatch15.2\(1\)gc1

ciscoiosMatch15.2\(1\)gc2

ciscoiosMatch15.2\(2\)gc

ciscoiosMatch15.2\(3\)gc

ciscoiosMatch15.2\(3\)gc1

ciscoiosMatch15.1\(1\)sy

ciscoiosMatch15.1\(1\)sy1

ciscoiosMatch15.3\(1\)s

ciscoiosMatch15.3\(1\)s2

ciscoiosMatch15.3\(1\)s1

ciscoiosMatch15.3\(1\)s1e

ciscoiosMatch15.2\(4m\)e1

ciscoiosMatch15.1\(3\)mra

ciscoiosMatch15.1\(3\)mra1

ciscoiosMatch15.2\(1\)sc1a

ciscoiosMatch15.2\(2\)sc

ciscoiosMatch15.2\(2\)sc1

ciscoiosMatch15.2\(2\)sc3

ciscoiosMatch15.2\(2\)sc4

ciscoiosMatch15.2\(1\)sd1

ciscoiosMatch15.2\(1\)sd2

ciscoiosMatch15.2\(1\)sd3

ciscoiosMatch15.2\(1\)sd4

ciscoiosMatch15.2\(1\)sd6

ciscoiosMatch15.2\(1\)sd6a

ciscoiosMatch15.2\(1\)sd7

ciscoiosMatch15.2\(1\)sd8

ciscoiosMatch15.2\(4\)jaz1

ciscoiosMatch15.1\(3\)svg

ciscoiosMatch15.1\(3\)svg2

ciscoiosMatch15.1\(3\)svg3

ciscoiosMatch15.1\(3\)svg1b

ciscoiosMatch15.1\(3\)svg1c

ciscoiosMatch15.1\(3\)svg3a

ciscoiosMatch15.1\(3\)svg3b

ciscoiosMatch15.1\(3\)svg3c

ciscoiosMatch15.1\(3\)svg2a

ciscoiosMatch15.1\(3\)svg1a

ciscoiosMatch15.1\(3\)svh

ciscoiosMatch15.1\(3\)svh2

ciscoiosMatch15.1\(3\)svh4

ciscoiosMatch15.1\(3\)svh4a

ciscoiosMatch15.1\(3\)svi2

ciscoiosMatch15.1\(3\)svi1a

ciscoiosMatch15.1\(3\)svi2a

ciscoiosMatch15.1\(3\)svi3

ciscoiosMatch15.1\(3\)svi31a

ciscoiosMatch15.1\(3\)svi31b

ciscoiosMatch15.1\(3\)svi3b

ciscoiosMatch15.1\(3\)svi3c

ciscoiosMatch15.6\(2\)t

ciscoiosMatch15.1\(3\)svj

ciscoiosMatch15.1\(3\)svj2

ciscoiosMatch15.1\(3\)svr1

ciscoiosMatch15.1\(3\)svr2

ciscoiosMatch15.1\(3\)svr3

ciscoiosMatch15.1\(3\)svs

ciscoiosMatch15.1\(3\)svs1

ciscoiosMatch15.1\(3\)svt1

ciscoiosMatch15.1\(3\)svt2

ciscoiosMatch15.1\(3\)svt3

ciscoiosMatch15.1\(3\)svt4

ciscoiosMatch15.1\(3\)svu1

ciscoiosMatch15.1\(3\)svu10

ciscoiosMatch15.1\(3\)svu2

ciscoiosMatch15.1\(3\)svu11

ciscoiosMatch15.1\(3\)svu21

ciscoiosMatch15.1\(3\)svv1

ciscoiosMatch15.1\(3\)svv2

ciscoiosMatch15.1\(3\)svv3

ciscoiosMatch15.1\(3\)svv4

ciscoiosMatch15.1\(3\)svw

ciscoiosMatch15.1\(3\)svw1

ciscoiosMatch15.1\(3\)svx

ciscoiosMatch15.1\(3\)svx1

ciscorvs4000_softwareMatch3.7.0s

ciscorvs4000_softwareMatch3.7.1s

ciscorvs4000_softwareMatch3.7.2s

ciscorvs4000_softwareMatch3.7.3s

ciscorvs4000_softwareMatch3.7.2ts

ciscorvs4000_softwareMatch3.7.0bs

ciscorvs4000_softwareMatch3.7.1as

ciscorvs4000_softwareMatch3.8.0s

ciscorvs4000_softwareMatch3.8.1s

ciscorvs4000_softwareMatch3.8.2s

CPENameOperatorVersion
ioseq15.0M
ioseq15.0XA
ioseq15.1T
ioseq15.1XB
ioseq15.2S
ioseq15.3T
ioseq15.1S
ioseq15.1M
ioseq15.1GC
ioseq15.0SY

Name	Operator	Version
ios	eq	15.0M
ios	eq	15.0XA
ios	eq	15.1T
ios	eq	15.1XB
ios	eq	15.2S
ios	eq	15.3T
ios	eq	15.1S
ios	eq	15.1M
ios	eq	15.1GC
ios	eq	15.0SY

Rows per page:

1-10 of 2241

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-rsvp

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.6%

JSON

Related for CISCO-SA-20130925-RSVP