Lucene search

K
ciscoCiscoCISCO-SA-20140924-METADATA
HistorySep 24, 2014 - 4:00 p.m.

Cisco IOS Software Metadata Vulnerabilities

2014-09-2416:00:00
tools.cisco.com
21
cisco
metadata
vulnerabilities
remote attacker
denial of service
software updates

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.012

Percentile

85.1%

Two vulnerabilities in the metadata flow feature of Cisco IOS Software could allow an unauthenticated, remote attacker to reload a vulnerable device.

The vulnerabilities are due to improper handling of transit RSVP packets that need to be processed by the metadata infrastructure. An attacker could exploit these vulnerabilities by sending malformed RSVP packets to an affected device. A successful exploit could allow the attacker to cause an extended denial of service (DoS) condition.

Cisco has released software updates that address these vulnerabilities.

Workarounds that mitigate these vulnerabilities are not available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-metadata[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-metadata”]

Note: The September 24, 2014, Cisco IOS Software Security Advisory bundled publication includes six Cisco Security Advisories. All advisories address vulnerabilities in Cisco IOS Software. Individual publication links are in Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication at the following link:
http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep14.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep14.html”]

Affected configurations

Vulners
Node
ciscoiosMatch15.2s
OR
ciscoiosMatch15.3t
OR
ciscoiosMatch15.2m
OR
ciscoiosMatch15.0ex
OR
ciscoiosMatch15.2gc
OR
ciscoiosMatch15.1sy
OR
ciscoiosMatch15.3s
OR
ciscoiosMatch15.3m
OR
ciscoiosMatch15.2sc
OR
ciscoiosMatch15.2jaz
OR
ciscoiosMatch15.3xb
OR
ciscoiosMatch15.3jaa
OR
ciscoiosMatch15.3jpi
OR
ciscoiosMatch15.3jpj
OR
ciscoiosMatch15.3jpr
OR
ciscocisco_iosMatch3.7sxe
OR
ciscocisco_iosMatch3.8sxe
OR
ciscocisco_iosMatch3.9sxe
OR
ciscocisco_iosMatch3.3xoxe
OR
ciscocisco_iosMatch3.10sxe
OR
ciscoiosMatch15.2\(2\)s
OR
ciscoiosMatch15.2\(4\)s
OR
ciscoiosMatch15.2\(2\)s1
OR
ciscoiosMatch15.2\(4\)s1
OR
ciscoiosMatch15.2\(4\)s4a
OR
ciscoiosMatch15.3\(1\)t
OR
ciscoiosMatch15.3\(2\)t
OR
ciscoiosMatch15.3\(1\)t1
OR
ciscoiosMatch15.3\(1\)t2
OR
ciscoiosMatch15.3\(1\)t3
OR
ciscoiosMatch15.3\(1\)t4
OR
ciscoiosMatch15.3\(2\)t1
OR
ciscoiosMatch15.3\(2\)t2
OR
ciscoiosMatch15.3\(2\)t3
OR
ciscoiosMatch15.2\(4\)m
OR
ciscoiosMatch15.2\(4\)m1
OR
ciscoiosMatch15.2\(4\)m2
OR
ciscoiosMatch15.2\(4\)m4
OR
ciscoiosMatch15.2\(4\)m3
OR
ciscoiosMatch15.2\(4\)m5
OR
ciscoiosMatch15.2\(4\)m6
OR
ciscoiosMatch15.2\(4\)m6b
OR
ciscoiosMatch15.2\(4\)m6a
OR
ciscoiosMatch15.0\(2\)ex2
OR
ciscoiosMatch15.0\(2\)ex8
OR
ciscoiosMatch15.2\(1\)gc
OR
ciscoiosMatch15.2\(1\)gc1
OR
ciscoiosMatch15.2\(1\)gc2
OR
ciscoiosMatch15.2\(2\)gc
OR
ciscoiosMatch15.2\(3\)gc
OR
ciscoiosMatch15.2\(3\)gc1
OR
ciscoiosMatch15.2\(4\)gc
OR
ciscoiosMatch15.2\(4\)gc1
OR
ciscoiosMatch15.2\(4\)gc2
OR
ciscoiosMatch15.1\(1\)sy
OR
ciscoiosMatch15.1\(1\)sy1
OR
ciscoiosMatch15.1\(2\)sy
OR
ciscoiosMatch15.1\(2\)sy1
OR
ciscoiosMatch15.1\(2\)sy2
OR
ciscoiosMatch15.1\(1\)sy2
OR
ciscoiosMatch15.1\(1\)sy3
OR
ciscoiosMatch15.1\(2\)sy3
OR
ciscoiosMatch15.3\(1\)s
OR
ciscoiosMatch15.3\(2\)s
OR
ciscoiosMatch15.3\(3\)s
OR
ciscoiosMatch15.3\(1\)s2
OR
ciscoiosMatch15.3\(2\)s2
OR
ciscoiosMatch15.3\(2\)s1
OR
ciscoiosMatch15.3\(3\)s1
OR
ciscoiosMatch15.3\(3\)s2
OR
ciscoiosMatch15.3\(3\)s3
OR
ciscoiosMatch15.3\(3\)m
OR
ciscoiosMatch15.3\(3\)m1
OR
ciscoiosMatch15.3\(3\)m2
OR
ciscoiosMatch15.3\(3\)m3
OR
ciscoiosMatch15.2\(2\)sc3
OR
ciscoiosMatch15.2\(4\)jaz1
OR
ciscoiosMatch15.3\(3\)xb12
OR
ciscoiosMatch15.3\(3\)jaa1
OR
ciscoiosMatch15.3\(3\)jpi
OR
ciscoiosMatch15.3\(3\)jpj
OR
ciscoiosMatch15.3\(3\)jpr1
OR
ciscocisco_iosMatch3.7.0sxe
OR
ciscocisco_iosMatch3.7.1sxe
OR
ciscocisco_iosMatch3.7.2sxe
OR
ciscocisco_iosMatch3.7.3sxe
OR
ciscocisco_iosMatch3.7.4sxe
OR
ciscocisco_iosMatch3.7.5sxe
OR
ciscocisco_iosMatch3.8.0sxe
OR
ciscocisco_iosMatch3.8.1sxe
OR
ciscocisco_iosMatch3.8.2sxe
OR
ciscocisco_iosMatch3.9.1sxe
OR
ciscocisco_iosMatch3.9.0sxe
OR
ciscocisco_iosMatch3.9.2sxe
OR
ciscocisco_iosMatch3.3.0xoxe
OR
ciscocisco_iosMatch3.10.0sxe
OR
ciscocisco_iosMatch3.10.1sxe
OR
ciscocisco_iosMatch3.10.2sxe
OR
ciscocisco_iosMatch3.10.0asxe
OR
ciscocisco_iosMatch3.10.3sxe
VendorProductVersionCPE
ciscoios15.2scpe:2.3:o:cisco:ios:15.2s:*:*:*:*:*:*:*
ciscoios15.3tcpe:2.3:o:cisco:ios:15.3t:*:*:*:*:*:*:*
ciscoios15.2mcpe:2.3:o:cisco:ios:15.2m:*:*:*:*:*:*:*
ciscoios15.0excpe:2.3:o:cisco:ios:15.0ex:*:*:*:*:*:*:*
ciscoios15.2gccpe:2.3:o:cisco:ios:15.2gc:*:*:*:*:*:*:*
ciscoios15.1sycpe:2.3:o:cisco:ios:15.1sy:*:*:*:*:*:*:*
ciscoios15.3scpe:2.3:o:cisco:ios:15.3s:*:*:*:*:*:*:*
ciscoios15.3mcpe:2.3:o:cisco:ios:15.3m:*:*:*:*:*:*:*
ciscoios15.2sccpe:2.3:o:cisco:ios:15.2sc:*:*:*:*:*:*:*
ciscoios15.2jazcpe:2.3:o:cisco:ios:15.2jaz:*:*:*:*:*:*:*
Rows per page:
1-10 of 1001

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.012

Percentile

85.1%