Lucene search

CiscoCISCO-SA-20161102-TL1

HistoryNov 02, 2016 - 4:00 p.m.

Cisco ASR 900 Series Aggregation Services Routers Buffer Overflow Vulnerability

2016-11-0216:00:00

tools.cisco.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.026

Percentile

90.4%

JSON

A vulnerability in the Transaction Language 1 (TL1) code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system.

The vulnerability exists because the affected software performs incomplete bounds checks on input data. An attacker could exploit this vulnerability by sending a malicious request to the TL1 port, which could cause the device to reload. An exploit could allow the attacker to execute arbitrary code and obtain full control of the system or cause a reload of the affected system.

Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-tl1[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-tl1”]

Affected configurations

Vulners

Node

ciscocisco_iosMatch3.18sxe

ciscoasr_900_series_softwareMatchany

ciscocisco_iosMatch3.18.0sxe

ciscocisco_iosMatch3.18.1sxe

ciscoasr_9904Match900_series_aggregation_services_routers

VendorProductVersionCPE
ciscocisco_ios3.18scpe:2.3:o:cisco:cisco_ios:3.18s:xe:*:*:*:*:*:*
ciscoasr_900_series_softwareanycpe:2.3:a:cisco:asr_900_series_software:any:*:*:*:*:*:*:*
ciscocisco_ios3.18.0scpe:2.3:o:cisco:cisco_ios:3.18.0s:xe:*:*:*:*:*:*
ciscocisco_ios3.18.1scpe:2.3:o:cisco:cisco_ios:3.18.1s:xe:*:*:*:*:*:*
ciscoasr_9904900_series_aggregation_services_routerscpe:2.3:h:cisco:asr_9904:900_series_aggregation_services_routers:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	cisco_ios	3.18s	cpe:2.3:o:cisco:cisco_ios:3.18s:xe::::::
cisco	asr_900_series_software	any	cpe:2.3:a:cisco:asr_900_series_software:any:::::::*
cisco	cisco_ios	3.18.0s	cpe:2.3:o:cisco:cisco_ios:3.18.0s:xe::::::
cisco	cisco_ios	3.18.1s	cpe:2.3:o:cisco:cisco_ios:3.18.1s:xe::::::
cisco	asr_9904	900_series_aggregation_services_routers	cpe:2.3:h:cisco:asr_9904:900_series_aggregation_services_routers:::::::*

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-tl1

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.026

Percentile

90.4%

JSON

Related for CISCO-SA-20161102-TL1