CiscoCISCO-SA-20150611-IOSXRCisco IOS XR Software Crafted IPv6 Packet Denial of Service Vulnerability
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
48.6%
A vulnerability in the IP version 6 (IPv6) processing code of Cisco IOS XR Software for
Cisco CRS-3 Carrier Routing System could allow an unauthenticated,
remote attacker to trigger an ASIC scan of the Network Processor Unit (NPU) and a reload of the
line
card processing an IPv6 packet.
The vulnerability is due
to incorrect processing of an IPv6 packet carrying IPv6 extension
headers that are valid but unlikely to be seen during normal operation. An attacker
could exploit
this vulnerability by sending such an IPv6 packet to an
affected device that is configured to process IPv6 traffic. An exploit
could allow the attacker to cause a reload of the line card, resulting
in a DoS condition.
Cisco has released software updates that address this vulnerability. There is no workaround that mitigates this vulnerability.
This advisory is available at the following link:
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco ios xr software | eq | any | |
| cisco ios xr software | eq | any |
Related
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
48.6%