Cisco IOS XR Software CVE-2014-3376 RSVP Packet Parsing Denial of Service Vulnerability
BID:69956
Info
Cisco IOS XR Software CVE-2014-3376 RSVP Packet Parsing Denial of Service Vulnerability
| Bugtraq ID: | 69956 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2014-3376 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 18 2014 12:00AM |
| Updated: | Sep 18 2014 12:00AM |
| Credit: | Cisco |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Cisco IOS XR Software CVE-2014-3376 RSVP Packet Parsing Denial of Service Vulnerability
Cisco IOS XR is prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to cause the RSVP process on the affected device to reload, denying service to legitimate users.
This issue is being tracked by Cisco Bug ID CSCuq12031.
Cisco IOS XR is prone to a remote denial-of-service vulnerability.
Attackers can exploit this issue to cause the RSVP process on the affected device to reload, denying service to legitimate users.
This issue is being tracked by Cisco Bug ID CSCuq12031.
Exploit / POC
Cisco IOS XR Software CVE-2014-3376 RSVP Packet Parsing Denial of Service Vulnerability
Attackers can use standard, readily available tools to exploit this issue.
Attackers can use standard, readily available tools to exploit this issue.
Solution / Fix
Cisco IOS XR Software CVE-2014-3376 RSVP Packet Parsing Denial of Service Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Cisco IOS XR Software CVE-2014-3376 RSVP Packet Parsing Denial of Service Vulnerability
References:
References:
- Cisco Homepage (Cisco )
- Cisco IOS XR Software Homepage (Cisco)