Lucene search

[email protected]CVE-2013-6706

HistoryNov 29, 2013 - 4:33 a.m.

CVE-2013-6706

2013-11-2904:33:29

CWE-20

[email protected]

web.nvd.nist.gov

cisco

ios xe

denial of service

remote attackers

crafted mpls packets

bug id cscuj23992

CVSS2

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.01

Percentile

84.0%

JSON

The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service (device reload) via crafted MPLS packets that are not properly handled during IP header validation, aka Bug ID CSCuj23992.

Affected configurations

NVD

Node

ciscoios_xeMatch-

VendorProductVersionCPE
ciscoios_xe-cpe:/o:cisco:ios_xe:-:::

Vendor	Product	Version	CPE
cisco	ios_xe	-	cpe:/o:cisco:ios_xe:-:::

References

osvdb.org/100394

secunia.com/advisories/55817

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6706

tools.cisco.com/security/center/viewAlert.x?alertId=31950

www.securityfocus.com/bid/63979

www.securitytracker.com/id/1029407

CVSS2

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.01

Percentile

84.0%

JSON

Related for CVE-2013-6706

prion1 nvd1 nessus2 cisco1 cvelist1