Cisco Catalyst MPLS Packet Handling Denial of Service Vulnerability

Bugtraq ID:	22750
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Feb 28 2007 12:00AM
Updated:	Mar 01 2007 01:35AM
Credit:	The vendor reported this issue.
Vulnerable:	Cisco IOS 12.2(18)SXF Cisco Catalyst 6500 Cisco Catalyst 6000 0 Cisco Catalyst 7600
Not Vulnerable:

Cisco Catalyst MPLS Packet Handling Denial of Service Vulnerability

Cisco Catalyst switches and routers are prone to multiple remote denial-of-service vulnerabilities because the device fails to handle exceptional conditions.

An attacker can exploit these issues to restart the affected device. Repeated exploits may lead to denial-of-service conditions.

These devices are affected:

- Cisco Catalyst 6500 systems that run Cisco IOS 12.2(18)SXF4
- Cisco Catalyst 6000, 6500, Cisco 7600 series systems with MSFC2 or MSFC3 running in Hybrid Mode.

Cisco Catalyst MPLS Packet Handling Denial of Service Vulnerability

An attacker uses standard networking tools to exploit this issue.

Cisco Catalyst MPLS Packet Handling Denial of Service Vulnerability

Solution:
The vendor released an advisory and fixes addressing this issue. Please see the most recent revision of this advisory for details on obtaining the appropriate updates.

Cisco Catalyst MPLS Packet Handling Denial of Service Vulnerability

References:

• Cisco Catalyst Homepage (Cisco System)
  
• Cisco Security Advisory: Cisco Catalyst 6000, 6500 and Cisco 7600 Series MPLS Pa (Cisco Systems)
  
• Cisco Security Advisory: Cisco Catalyst 6000, 6500 and Cisco 7600 Series MPLS Pa ([email protected])