4 matches found
Rockwell Automation Stratix Multiple Vulnerabilities in Cisco IOS Software Metadata (CVE-2014-3356)
Two vulnerabilities in the metadata flow feature of Cisco IOS Software could allow an unauthenticated, remote attacker to reload a vulnerable device. The vulnerabilities are due to improper handling of transit RSVP packets that need to be processed by the metadata infrastructure. An attacker coul...
Cisco IOS XE Software Multiple IPv6 Metadata Flow Vulnerabilities (cisco-sa-20140924-metadata)
According to its self-reported version, the version of Cisco IOS XE running on the remote host is affected by two vulnerabilities in the IPv6 metadata flow feature due to improper handling of RSVP packets. A remote attacker can exploit this issue by sending specially crafted RSVP flows to cause t...
Cisco IOS Software Multiple IPv6 Metadata Flow Vulnerabilities (cisco-sa-20140924-metadata)
According to its self-reported version, the version of Cisco IOS running on the remote host is affected by two vulnerabilities in the IPv6 metadata flow feature due to improper handling of RSVP packets. A remote attacker can exploit this issue by sending specially crafted RSVP flows to cause the...
CVE-2014-3356
CVE-2014-3356 affects Cisco IOS/IOS XE metadata flow functionality. The issue stems from improper handling of transit RSVP packets, enabling a remote attacker to cause a device reload (DoS) by sending malformed RSVP packets. Affected releases include IOS 15.1–15.3 and IOS XE 3.3.xXO before 3.3.1X...