Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG) devices does not properly implement the “parse error drop” feature, which allows remote attackers to bypass intended access restrictions via a crafted series of packets, aka Bug ID CSCug90143.
CPE | Name | Operator | Version |
---|---|---|---|
ios | eq | <= 12.424mdb14 | |
ios | eq | 12.424.0-md | |
ios | eq | 12.424.0-md1 | |
ios | eq | 12.424.0-md2 | |
ios | eq | 12.424.0-md3 | |
ios | eq | 12.424.0-md4 | |
ios | eq | 12.424.0-md5 | |
ios | eq | 12.424.0-md5-a | |
ios | eq | 12.424.0-md6 | |
ios | eq | 12.424.0-md7 |