BID:69667

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3343 Denial of Service Vulnerability

CVE-2014-3343 |

Info

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3343 Denial of Service Vulnerability

Bugtraq ID:	69667
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2014-3343
Remote:	Yes
Local:	No
Published:	Sep 08 2014 12:00AM
Updated:	Sep 08 2014 12:00AM
Credit:	Cisco
Vulnerable:

Not Vulnerable:

Discussion

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3343 Denial of Service Vulnerability

Cisco IOS XR is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to cause the affected device to crash, denying service to legitimate users.

This issue is being tracked by Cisco Bug ID CSCuo59052.

Exploit / POC

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3343 Denial of Service Vulnerability

Attackers can use standard, readily available tools to exploit this issue.

Solution / Fix

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3343 Denial of Service Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

References

Cisco IOS XR Software DHCPv6 Packet Handling CVE-2014-3343 Denial of Service Vulnerability

References:

Cisco Homepage (Cisco )