cisco-sa-esp20-arp-dos-GvHVggqJ: Cisco IOS XE Software for Cisco ASR 1000 Series 20-Gbps Embedded Services Processor IP ARP Denial of Service Vulnerability
First published: Thu Sep 24 2020(Updated: )
A vulnerability in the IP Address Resolution Protocol (ARP) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers with a 20-Gbps Embedded Services Processor (ESP) installed could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service condition. The vulnerability is due to insufficient error handling when an affected device has reached platform limitations. An attacker could exploit this vulnerability by sending a malicious series of IP ARP messages to an affected device. A successful exploit could allow the attacker to exhaust system resources, which would eventually cause the affected device to reload. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esp20-arp-dos-GvHVggqJ This advisory is part of the September 24, 2020, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 25 Cisco Security Advisories that describe 34 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: September 2020 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication.
Credit: This vulnerability was found during the resolution a Cisco TAC support case
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XE Software | ||
| Cisco ASR 1000 Series |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of cisco-sa-esp20-arp-dos-GvHVggqJ?
The severity of cisco-sa-esp20-arp-dos-GvHVggqJ is considered high due to its potential to allow unauthorized access and disrupt service.
How do I fix cisco-sa-esp20-arp-dos-GvHVggqJ?
To fix cisco-sa-esp20-arp-dos-GvHVggqJ, you should apply the latest patches and updates provided by Cisco for the affected devices.
Who is affected by cisco-sa-esp20-arp-dos-GvHVggqJ?
Cisco ASR 1000 Series Aggregation Services Routers with a 20-Gbps Embedded Services Processor running Cisco IOS XE Software are affected by cisco-sa-esp20-arp-dos-GvHVggqJ.
What type of attack does cisco-sa-esp20-arp-dos-GvHVggqJ enable?
cisco-sa-esp20-arp-dos-GvHVggqJ enables an adjacent attacker to execute a denial-of-service (DoS) attack through the manipulation of the ARP protocol.
What is the nature of the vulnerability identified in cisco-sa-esp20-arp-dos-GvHVggqJ?
The nature of the vulnerability in cisco-sa-esp20-arp-dos-GvHVggqJ relates to the IP Address Resolution Protocol (ARP) feature, which can be exploited without authentication.
- agent/event
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/cisco-advisory
- source/Cisco
- agent/severity
- agent/title
- agent/author
- agent/references
- agent/weakness
- agent/remedy
- agent/description
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios xe software
- canonical/cisco asr 1000 series