CVE-2013-1164

2013-04-1110:55:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cisco

ios xe

denial of service

vulnerability

cve-2013-1164

nvd

cisco multicast leaf recycle elimination

ipv6

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.2%

JSON

Cisco IOS XE 3.4 before 3.4.4S, 3.5, and 3.6 on 1000 series Aggregation Services Routers (ASR) does not properly implement the Cisco Multicast Leaf Recycle Elimination (MLRE) feature, which allows remote attackers to cause a denial of service (card reload) via fragmented IPv6 multicast packets, aka Bug ID CSCtz97563.

CPENameOperatorVersion
cisco:ios_xecisco ios xeeq3.4.0as
cisco:ios_xecisco ios xeeq3.4.0s
cisco:ios_xecisco ios xeeq3.4.1s
cisco:ios_xecisco ios xeeq3.4.2s
cisco:ios_xecisco ios xeeq3.4.3s
cisco:ios_xecisco ios xeeq3.5.0s
cisco:ios_xecisco ios xeeq3.6.0s
cisco:asr_1001cisco asr 1001eq-
cisco:asr_1002cisco asr 1002eq-
cisco:asr_1002-xcisco asr 1002-xeq-

CPE	Name	Operator	Version
cisco:ios_xe	cisco ios xe	eq	3.4.0as
cisco:ios_xe	cisco ios xe	eq	3.4.0s
cisco:ios_xe	cisco ios xe	eq	3.4.1s
cisco:ios_xe	cisco ios xe	eq	3.4.2s
cisco:ios_xe	cisco ios xe	eq	3.4.3s
cisco:ios_xe	cisco ios xe	eq	3.5.0s
cisco:ios_xe	cisco ios xe	eq	3.6.0s
cisco:asr_1001	cisco asr 1001	eq	-
cisco:asr_1002	cisco asr 1002	eq	-
cisco:asr_1002-x	cisco asr 1002-x	eq	-