Cisco IOS XR Software CVE-2014-3353 Denial of Service Vulnerability
BID:69506
CVE-2014-3353 |Info
Cisco IOS XR Software CVE-2014-3353 Denial of Service Vulnerability
| Bugtraq ID: | 69506 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2014-3353 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 02 2014 12:00AM |
| Updated: | Sep 03 2014 11:26AM |
| Credit: | Cisco |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Cisco IOS XR Software CVE-2014-3353 Denial of Service Vulnerability
Cisco IOS XR is prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to cause high CPU utilization on a line card of the Cisco CRS and certain IPv6 traffic to the affected device to be dropped, denying service to legitimate users.
This issue is being tracked by Cisco Bug ID CSCuo95165.
Cisco IOS XR is prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to cause high CPU utilization on a line card of the Cisco CRS and certain IPv6 traffic to the affected device to be dropped, denying service to legitimate users.
This issue is being tracked by Cisco Bug ID CSCuo95165.
Exploit / POC
Cisco IOS XR Software CVE-2014-3353 Denial of Service Vulnerability
Attackers can use standard, readily available tools to exploit this issue.
Attackers can use standard, readily available tools to exploit this issue.
Solution / Fix
Cisco IOS XR Software CVE-2014-3353 Denial of Service Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Cisco IOS XR Software CVE-2014-3353 Denial of Service Vulnerability
References:
References:
- Cisco Homepage (Cisco )
- Cisco IOS XR Software Homepage (Cisco)