CVE-2017-12238: Cisco Catalyst 6800 Series Switches VPLS Denial-of-Service Vulnerability
First published: Fri Sep 29 2017(Updated: )
A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS 15.0 through 15.4 for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a denial of service (DoS) condition. The vulnerability is due to a memory management issue in the affected software. An attacker could exploit this vulnerability by creating a large number of VPLS-generated MAC entries in the MAC address table of an affected device. A successful exploit could allow the attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a DoS condition. This vulnerability affects Cisco Catalyst 6800 Series Switches that are running a vulnerable release of Cisco IOS Software and have a Cisco C6800-16P10G or C6800-16P10G-XL line card in use with Supervisor Engine 6T. To be vulnerable, the device must also be configured with VPLS and the C6800-16P10G or C6800-16P10G-XL line card needs to be the core-facing MPLS interfaces. Cisco Bug IDs: CSCva61927.
Credit: ykramarz@cisco.com ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS | =15.0\(1\)sy1 | |
| Cisco IOS | =15.1\(1\)sy | |
| Cisco IOS | =15.1\(1\)sy1 | |
| Cisco IOS | =15.1\(1\)sy2 | |
| Cisco IOS | =15.1\(1\)sy3 | |
| Cisco IOS | =15.1\(1\)sy4 | |
| Cisco IOS | =15.1\(1\)sy5 | |
| Cisco IOS | =15.1\(1\)sy6 | |
| Cisco IOS | =15.1\(2\)sy | |
| Cisco IOS | =15.1\(2\)sy1 | |
| Cisco IOS | =15.1\(2\)sy2 | |
| Cisco IOS | =15.1\(2\)sy3 | |
| Cisco IOS | =15.1\(2\)sy4 | |
| Cisco IOS | =15.1\(2\)sy4a | |
| Cisco IOS | =15.1\(2\)sy5 | |
| Cisco IOS | =15.1\(2\)sy6 | |
| Cisco IOS | =15.1\(2\)sy7 | |
| Cisco IOS | =15.1\(2\)sy8 | |
| Cisco IOS | =15.1\(2\)sy9 | |
| Cisco IOS | =15.1\(2\)sy10 | |
| Cisco IOS | =15.2\(1\)sy | |
| Cisco IOS | =15.2\(1\)sy0a | |
| Cisco IOS | =15.2\(1\)sy1 | |
| Cisco IOS | =15.2\(1\)sy1a | |
| Cisco IOS | =15.2\(1\)sy2 | |
| Cisco IOS | =15.2\(1\)sy3 | |
| Cisco IOS | =15.2\(1\)sy4 | |
| Cisco IOS | =15.2\(2\)sy | |
| Cisco IOS | =15.2\(2\)sy1 | |
| Cisco IOS | =15.2\(2\)sy2 | |
| Cisco IOS | =15.3\(1\)sy | |
| Cisco IOS | =15.3\(1\)sy1 | |
| Cisco IOS | =15.3\(1\)sy2 | |
| Cisco IOS | =15.4\(1\)sy | |
| All of | ||
| Cisco IOS | >=15.0<=15.4 | |
| Any of | ||
| Cisco C6800-16P10G | ||
| Cisco C6800-16p10g-xl | ||
| Cisco Catalyst 6000 | ||
| Cisco Catalyst 6000 Ws-svc-nam-1 | =2.2\(1a\) | |
| Cisco Catalyst 6000 Ws-svc-nam-1 | =3.1\(1a\) | |
| Cisco Catalyst 6000 Ws-svc-nam-2 | =2.2\(1a\) | |
| Cisco Catalyst 6000 Ws-svc-nam-2 | =3.1\(1a\) | |
| Cisco Catalyst 6000 Ws-x6380-nam | =2.1\(2\) | |
| Cisco Catalyst 6000 Ws-x6380-nam | =3.1\(1a\) | |
| Cisco Catalyst 6500 | ||
| Cisco Catalyst 6500-e | ||
| Cisco Catalyst 6500 Ws-svc-nam-1 | =2.2\(1a\) | |
| Cisco Catalyst 6500 Ws-svc-nam-1 | =3.1\(1a\) | |
| Cisco Catalyst 6500 Ws-svc-nam-2 | =2.2\(1a\) | |
| Cisco Catalyst 6500 Ws-svc-nam-2 | =3.1\(1a\) | |
| Cisco Catalyst 6500 Ws-x6380-nam | =2.1\(2\) | |
| Cisco Catalyst 6500 Ws-x6380-nam | =3.1\(1a\) | |
| Cisco Catalyst 6503-e | ||
| Cisco Catalyst 6504-e | ||
| Cisco Catalyst 6506-e | ||
| Cisco Catalyst 6509-e | ||
| Cisco Catalyst 6509-neb-a | ||
| Cisco Catalyst 6509-v-e | ||
| Cisco Catalyst 6513 | ||
| Cisco Catalyst 6513-e | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/description
- agent/title
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/references
- agent/softwarecombine
- agent/event
- agent/tags
- collector/nvd-cve
- vendor/cisco
- canonical/cisco ios
- version/cisco ios/15.0\(1\)sy1
- version/cisco ios/15.1\(1\)sy
- version/cisco ios/15.1\(1\)sy1
- version/cisco ios/15.1\(1\)sy2
- version/cisco ios/15.1\(1\)sy3
- version/cisco ios/15.1\(1\)sy4
- version/cisco ios/15.1\(1\)sy5
- version/cisco ios/15.1\(1\)sy6
- version/cisco ios/15.1\(2\)sy
- version/cisco ios/15.1\(2\)sy1
- version/cisco ios/15.1\(2\)sy2
- version/cisco ios/15.1\(2\)sy3
- version/cisco ios/15.1\(2\)sy4
- version/cisco ios/15.1\(2\)sy4a
- version/cisco ios/15.1\(2\)sy5
- version/cisco ios/15.1\(2\)sy6
- version/cisco ios/15.1\(2\)sy7
- version/cisco ios/15.1\(2\)sy8
- version/cisco ios/15.1\(2\)sy9
- version/cisco ios/15.1\(2\)sy10
- version/cisco ios/15.2\(1\)sy
- version/cisco ios/15.2\(1\)sy0a
- version/cisco ios/15.2\(1\)sy1
- version/cisco ios/15.2\(1\)sy1a
- version/cisco ios/15.2\(1\)sy2
- version/cisco ios/15.2\(1\)sy3
- version/cisco ios/15.2\(1\)sy4
- version/cisco ios/15.2\(2\)sy
- version/cisco ios/15.2\(2\)sy1
- version/cisco ios/15.2\(2\)sy2
- version/cisco ios/15.3\(1\)sy
- version/cisco ios/15.3\(1\)sy1
- version/cisco ios/15.3\(1\)sy2
- version/cisco ios/15.4\(1\)sy
- version/cisco ios/15.0
- version/cisco ios/15.4
- canonical/cisco c6800-16p10g
- canonical/cisco c6800-16p10g-xl
- canonical/cisco catalyst 6000
- canonical/cisco catalyst 6000 ws-svc-nam-1
- version/cisco catalyst 6000 ws-svc-nam-1/2.2\(1a\)
- version/cisco catalyst 6000 ws-svc-nam-1/3.1\(1a\)
- canonical/cisco catalyst 6000 ws-svc-nam-2
- version/cisco catalyst 6000 ws-svc-nam-2/2.2\(1a\)
- version/cisco catalyst 6000 ws-svc-nam-2/3.1\(1a\)
- canonical/cisco catalyst 6000 ws-x6380-nam
- version/cisco catalyst 6000 ws-x6380-nam/2.1\(2\)
- version/cisco catalyst 6000 ws-x6380-nam/3.1\(1a\)
- canonical/cisco catalyst 6500
- canonical/cisco catalyst 6500-e
- canonical/cisco catalyst 6500 ws-svc-nam-1
- version/cisco catalyst 6500 ws-svc-nam-1/2.2\(1a\)
- version/cisco catalyst 6500 ws-svc-nam-1/3.1\(1a\)
- canonical/cisco catalyst 6500 ws-svc-nam-2
- version/cisco catalyst 6500 ws-svc-nam-2/2.2\(1a\)
- version/cisco catalyst 6500 ws-svc-nam-2/3.1\(1a\)
- canonical/cisco catalyst 6500 ws-x6380-nam
- version/cisco catalyst 6500 ws-x6380-nam/2.1\(2\)
- version/cisco catalyst 6500 ws-x6380-nam/3.1\(1a\)
- canonical/cisco catalyst 6503-e
- canonical/cisco catalyst 6504-e
- canonical/cisco catalyst 6506-e
- canonical/cisco catalyst 6509-e
- canonical/cisco catalyst 6509-neb-a
- canonical/cisco catalyst 6509-v-e
- canonical/cisco catalyst 6513
- canonical/cisco catalyst 6513-e
- canonical/cisco catalyst 6800 series switches