Cisco IOS Software RSVP Vulnerability

2014-09-2416:00:00

tools.cisco.com

0.021 Low

EPSS

Percentile

89.1%

JSON

A vulnerability in the implementation of the Resource Reservation Protocol (RSVP) in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker cause the device to reload. This vulnerability could be exploited repeatedly to cause an extended denial of service (DoS) condition.

Cisco has released software updates that address this vulnerability.

A workaround that mitigates this vulnerability is available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-rsvp[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-rsvp”]

Note: The September 24, 2014, Cisco IOS Software Security Advisory bundled publication includes six Cisco Security Advisories. All advisories address vulnerabilities in Cisco IOS Software. Individual publication links are in Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication at the following link:
http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep14.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep14.html”]

CPENameOperatorVersion
ioseq12.0S
ioseq12.0SX
ioseq12.0SY
ioseq12.0SZ
ioseq12.2SE
ioseq12.2ZI
ioseq12.0SV
ioseq12.2EX
ioseq12.2EY
ioseq12.2EZ

Name	Operator	Version
ios	eq	12.0S
ios	eq	12.0SX
ios	eq	12.0SY
ios	eq	12.0SZ
ios	eq	12.2SE
ios	eq	12.2ZI
ios	eq	12.0SV
ios	eq	12.2EX
ios	eq	12.2EY
ios	eq	12.2EZ

Rows per page:

1-10 of 10041

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-rsvp

0.021 Low

EPSS

Percentile

89.1%

JSON

Related for CISCO-SA-20140924-RSVP