Lucene search

[email protected]NVD:CVE-2014-3308

HistoryJul 07, 2014 - 11:01 a.m.

CVE-2014-3308

2014-07-0711:01:30

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.6

Confidence

High

EPSS

0.008

Percentile

81.3%

JSON

Cisco IOS XR on Trident line cards in ASR 9000 devices lacks a static punt policer, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted packets, aka Bug ID CSCun83985.

Affected configurations

Nvd

Node

ciscoios_xr

AND

ciscoasr_9000_rsp440_routerMatch-

ciscoasr_9001Match-

ciscoasr_9006Match-

ciscoasr_9010Match-

ciscoasr_9904Match-

ciscoasr_9912Match-

ciscoasr_9922Match-

References

secunia.com/advisories/58869

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3308

tools.cisco.com/security/center/viewAlert.x?alertId=34843

www.securityfocus.com/bid/68351

www.securitytracker.com/id/1030525

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.6

Confidence

High

EPSS

0.008

Percentile

81.3%

JSON

Related for NVD:CVE-2014-3308

cvelist1 cve1 cisco1 prion1 nessus1