CVE-2006-0340: Input Validation
First published: Sat Jan 21 2006(Updated: )
Unspecified vulnerability in Stack Group Bidding Protocol (SGBP) support in Cisco IOS 12.0 through 12.4 running on various Cisco products, when SGBP is enabled, allows remote attackers on the local network to cause a denial of service (device hang and network traffic loss) via a crafted UDP packet to port 9900.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS | =12.3ym | |
| Cisco IOS | =12.0xc | |
| Cisco IOS | =12.3yq | |
| Cisco IOS | =12.0xk | |
| Cisco IOS | =12.4t | |
| Cisco IOS | =12.0xr | |
| Cisco IOS | =12.1xm | |
| Cisco IOS | =12.1xi | |
| Cisco IOS | =12.3bc | |
| Cisco IOS | =12.1e | |
| Cisco IOS | =12.1ya | |
| Cisco IOS | =12.1yd | |
| Cisco IOS | =12.2zn | |
| Cisco IOS | =12.1xs | |
| Cisco IOS | =12.0xe | |
| Cisco IOS | =12.3bw | |
| Cisco IOS | =12.1xy | |
| Cisco IOS | =12.3xd | |
| Cisco IOS | =12.3xm | |
| Cisco IOS | =12.0xd | |
| Cisco IOS | =12.3xw | |
| Cisco IOS | =12.4mr | |
| Cisco IOS | =12.2su | |
| Cisco IOS | =12.1xz | |
| Cisco IOS | =12.2xg | |
| Cisco IOS | =12.0xj | |
| Cisco IOS | =12.2b | |
| Cisco IOS | =12.1t | |
| Cisco IOS | =12.3xi | |
| Cisco IOS | =12.2yn | |
| Cisco IOS | =12.3yj | |
| Cisco IOS | =12.2xb | |
| Cisco IOS | =12.2xl | |
| Cisco IOS | =12.2yw | |
| Cisco IOS | =12.3yu | |
| Cisco IOS | =12.2yd | |
| Cisco IOS | =12.3xj | |
| Cisco IOS | =12.0xl | |
| Cisco IOS | =12.3t | |
| Cisco IOS | =12.3 | |
| Cisco IOS | =12.2dd | |
| Cisco IOS | =12.1ga | |
| Cisco IOS | =12.1xl | |
| Cisco IOS | =12.2t | |
| Cisco IOS | =12.2yt | |
| Cisco IOS | =12.0xh | |
| Cisco IOS | =12.0t | |
| Cisco IOS | =12.1xw | |
| Cisco IOS | =12.2za | |
| Cisco IOS | =12.2ye | |
| Cisco IOS | =12.1yb | |
| Cisco IOS | =12.2zb | |
| Cisco IOS | =12.1gb | |
| Cisco IOS | =12.1ex | |
| Cisco IOS | =12.3xf | |
| Cisco IOS | =12.1 | |
| Cisco IOS | =12.3yk | |
| Cisco IOS | =12.3yf | |
| Cisco IOS | =12.1ec | |
| Cisco IOS | =12.3yt | |
| Cisco IOS | =12.2sy | |
| Cisco IOS | =12.2xk | |
| Cisco IOS | =12.1xh | |
| Cisco IOS | =12.3xb | |
| Cisco IOS | =12.2zj | |
| Cisco IOS | =12.0xa | |
| Cisco IOS | =12.1xu | |
| Cisco IOS | =12.0sc | |
| Cisco IOS | =12.3yg | |
| Cisco IOS | =12.3xu | |
| Cisco IOS | =12.2zd | |
| Cisco IOS | =12.4 | |
| Cisco IOS | =12.1aa | |
| Cisco IOS | =12.0xn | |
| Cisco IOS | =12.2xc | |
| Cisco IOS | =12.2bc | |
| Cisco IOS | =12.1xx | |
| Cisco IOS | =12.2ze | |
| Cisco IOS | =12.2xs | |
| Cisco IOS | =12.2bw | |
| Cisco IOS | =12.4xa | |
| Cisco IOS | =12.2yy | |
| Cisco IOS | =12.2sz | |
| Cisco IOS | =12.3yx | |
| Cisco IOS | =12.1xd | |
| Cisco IOS | =12.2dx | |
| Cisco IOS | =12.1ez | |
| Cisco IOS | =12.3xq | |
| Cisco IOS | =12.2cx | |
| Cisco IOS | =12.3xh | |
| Cisco IOS | =12.1xq | |
| Cisco IOS | =12.0s | |
| Cisco IOS | =12.2xf | |
| Cisco IOS | =12.3b | |
| Cisco IOS | =12.4xb | |
| Cisco IOS | =12.2xv | |
| Cisco IOS | =12.2 | |
| Cisco IOS | =12.1xa | |
| Cisco IOS | =12.0xg | |
| Cisco IOS | =12.0 | |
| Cisco IOS | =12.2yz | |
| Cisco IOS | =12.2xa | |
| Cisco IOS | =12.0xi | |
| Cisco IOS | =12.2mc | |
| Cisco IOS | =12.2yx | |
| Cisco IOS | =12.2by | |
| Cisco IOS | =12.2s | |
| Cisco IOS | =12.2xt |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/warp/public/707/cisco-sa-20060118-sgbp.shtml
- http://www.securityfocus.com/bid/16303
- http://securitytracker.com/id?1015501
- http://secunia.com/advisories/18490
- http://www.osvdb.org/22624
- http://securityreason.com/securityalert/358
- http://www.vupen.com/english/advisories/2006/0248
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24182
Frequently Asked Questions
What is the severity of CVE-2006-0340?
CVE-2006-0340 has a severity level that can lead to denial of service, affecting the availability of the affected devices.
How do I fix CVE-2006-0340?
To fix CVE-2006-0340, disable the Stack Group Bidding Protocol if it is not necessary for your network operation.
Which Cisco IOS versions are affected by CVE-2006-0340?
CVE-2006-0340 affects Cisco IOS versions from 12.0 to 12.4 when the Stack Group Bidding Protocol is enabled.
What are the potential impacts of CVE-2006-0340?
The potential impacts of CVE-2006-0340 include device hangs and loss of network traffic due to crafted UDP packets sent by remote attackers.
Is CVE-2006-0340 remote or local attack vector?
CVE-2006-0340 can be exploited by remote attackers over the local network.
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/tags
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- vendor/cisco
- canonical/cisco ios
- version/cisco ios/12.3ym
- version/cisco ios/12.0xc
- version/cisco ios/12.3yq
- version/cisco ios/12.0xk
- version/cisco ios/12.4t
- version/cisco ios/12.0xr
- version/cisco ios/12.1xm
- version/cisco ios/12.1xi
- version/cisco ios/12.3bc
- version/cisco ios/12.1e
- version/cisco ios/12.1ya
- version/cisco ios/12.1yd
- version/cisco ios/12.2zn
- version/cisco ios/12.1xs
- version/cisco ios/12.0xe
- version/cisco ios/12.3bw
- version/cisco ios/12.1xy
- version/cisco ios/12.3xd
- version/cisco ios/12.3xm
- version/cisco ios/12.0xd
- version/cisco ios/12.3xw
- version/cisco ios/12.4mr
- version/cisco ios/12.2su
- version/cisco ios/12.1xz
- version/cisco ios/12.2xg
- version/cisco ios/12.0xj
- version/cisco ios/12.2b
- version/cisco ios/12.1t
- version/cisco ios/12.3xi
- version/cisco ios/12.2yn
- version/cisco ios/12.3yj
- version/cisco ios/12.2xb
- version/cisco ios/12.2xl
- version/cisco ios/12.2yw
- version/cisco ios/12.3yu
- version/cisco ios/12.2yd
- version/cisco ios/12.3xj
- version/cisco ios/12.0xl
- version/cisco ios/12.3t
- version/cisco ios/12.3
- version/cisco ios/12.2dd
- version/cisco ios/12.1ga
- version/cisco ios/12.1xl
- version/cisco ios/12.2t
- version/cisco ios/12.2yt
- version/cisco ios/12.0xh
- version/cisco ios/12.0t
- version/cisco ios/12.1xw
- version/cisco ios/12.2za
- version/cisco ios/12.2ye
- version/cisco ios/12.1yb
- version/cisco ios/12.2zb
- version/cisco ios/12.1gb
- version/cisco ios/12.1ex
- version/cisco ios/12.3xf
- version/cisco ios/12.1
- version/cisco ios/12.3yk
- version/cisco ios/12.3yf
- version/cisco ios/12.1ec
- version/cisco ios/12.3yt
- version/cisco ios/12.2sy
- version/cisco ios/12.2xk
- version/cisco ios/12.1xh
- version/cisco ios/12.3xb
- version/cisco ios/12.2zj
- version/cisco ios/12.0xa
- version/cisco ios/12.1xu
- version/cisco ios/12.0sc
- version/cisco ios/12.3yg
- version/cisco ios/12.3xu
- version/cisco ios/12.2zd
- version/cisco ios/12.4
- version/cisco ios/12.1aa
- version/cisco ios/12.0xn
- version/cisco ios/12.2xc
- version/cisco ios/12.2bc
- version/cisco ios/12.1xx
- version/cisco ios/12.2ze
- version/cisco ios/12.2xs
- version/cisco ios/12.2bw
- version/cisco ios/12.4xa
- version/cisco ios/12.2yy
- version/cisco ios/12.2sz
- version/cisco ios/12.3yx
- version/cisco ios/12.1xd
- version/cisco ios/12.2dx
- version/cisco ios/12.1ez
- version/cisco ios/12.3xq
- version/cisco ios/12.2cx
- version/cisco ios/12.3xh
- version/cisco ios/12.1xq
- version/cisco ios/12.0s
- version/cisco ios/12.2xf
- version/cisco ios/12.3b
- version/cisco ios/12.4xb
- version/cisco ios/12.2xv
- version/cisco ios/12.2
- version/cisco ios/12.1xa
- version/cisco ios/12.0xg
- version/cisco ios/12.0
- version/cisco ios/12.2yz
- version/cisco ios/12.2xa
- version/cisco ios/12.0xi
- version/cisco ios/12.2mc
- version/cisco ios/12.2yx
- version/cisco ios/12.2by
- version/cisco ios/12.2s
- version/cisco ios/12.2xt