CVE-2014-2183: Input Validation
First published: Tue Apr 29 2014(Updated: )
The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XE | <=3.10.2s | |
| Cisco IOS XE | =3.10 | |
| Cisco IOS XE | =3.10.0s | |
| Cisco IOS XE | =3.10.1s | |
| Cisco IOS XE | =3.10.1s1 | |
| Cisco Asr 1001 | ||
| Cisco Asr 1002 | ||
| Cisco Asr 1002-x | ||
| Cisco Asr 1002 Fixed Router | ||
| Cisco Asr 1004 | ||
| Cisco Asr 1006 | ||
| Cisco Asr 1013 | ||
| Cisco Asr 1023 Router |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/description
- agent/author
- agent/event
- agent/tags
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco ios xe
- version/cisco ios xe/3.10.2s
- version/cisco ios xe/3.10
- version/cisco ios xe/3.10.0s
- version/cisco ios xe/3.10.1s
- version/cisco ios xe/3.10.1s1
- canonical/cisco asr 1001
- canonical/cisco asr 1002
- canonical/cisco asr 1002-x
- canonical/cisco asr 1002 fixed router
- canonical/cisco asr 1004
- canonical/cisco asr 1006
- canonical/cisco asr 1013
- canonical/cisco asr 1023 router