Cisco IOS XE ISDN Data Leakage Vulnerability

Cisco IOS XE is a set of operating systems developed by Cisco for its network devices. A data leakage vulnerability exists in the Dialer interface feature for ISDN connections in Cisco IOS XE for Cisco 4000 Series Integrated Services Routers. The vulnerability stems from insufficient validation o...

CVE-2019-12664

A vulnerability in the Dialer interface feature for ISDN connections in Cisco IOS XE Software for Cisco 4000 Series Integrated Services Routers ISRs could allow an unauthenticated, adjacent attacker to pass IPv4 traffic through an ISDN channel prior to successful PPP authentication. The...

CVE-2019-12664

Cisco IOS XE Software on Cisco 4000 Series ISRs has a data leak vulnerability in the Dialer interface for ISDN, due to insufficient validation of IPCP state. An unauthenticated adjacent attacker can pass IPv4 traffic through an ISDN channel before PPP authentication succeeds, either by placing an...

PT-2019-3336 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software for Cisco 4000 Series Integrated Services Routers ISRs affected versions not specified Description: A vulnerability in the Dialer interface feature for ISDN connections could allow an unauthenticated, adjacent attacker t...