First published: Thu Apr 24 2014(Updated: )
Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service (device reload) via crafted (1) broadcast or (2) multicast ICMP packets with fragmentation, aka Bug ID CSCub55948.
Credit: ykramarz@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco IOS XE | <=3.7s\(.1\) | |
Cisco IOS XE | =3.6.0s | |
Cisco IOS XE | =3.6.1s | |
Cisco IOS XE | =3.6.2s | |
Cisco IOS XE | =3.6s\(.0\) | |
Cisco IOS XE | =3.6s\(.1\) | |
Cisco IOS XE | =3.6s\(.2\) | |
Cisco IOS XE | =3.7.0s | |
Cisco IOS XE | =3.7.1s | |
Cisco IOS XE | =3.7.2s | |
Cisco IOS XE | =3.7s\(.0\) | |
Cisco Asr 1001 | ||
Cisco Asr 1002 | ||
Cisco Asr 1002-x | ||
Cisco Asr 1002 Fixed Router | ||
Cisco Asr 1004 | ||
Cisco Asr 1006 | ||
Cisco Asr 1013 | ||
Cisco Asr 1023 Router |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.