Cisco IOS 15.0 and 15.1 and IOS XE 3.x do not properly handle the "set mpls experimental imposition" command, which allows remote malicious users to cause a denial of service (device crash) via network traffic that triggers (1) fragmentation or (2) reassembly, aka Bug ID CSCtr56576.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios 15.1 |
||
cisco ios xe 3.4.1s |
||
cisco ios xe 3.1.1sg |
||
cisco ios xe 3.3.1s |
||
cisco ios xe 3.1.0s |
||
cisco ios xe 3.1.1s |
||
cisco ios xe 3.3.2s |
||
cisco ios xe 3.3.3s |
||
cisco ios xe 3.1.4s |
||
cisco ios xe 3.2.0s |
||
cisco ios xe 3.5.0s |
||
cisco ios xe 3.4.0s |
||
cisco ios xe 3.1.0sg |
||
cisco ios xe 3.1.3s |
||
cisco ios xe 3.1.2s |
||
cisco ios 15.0 |
||
cisco ios xe 3.2.0sg |
||
cisco ios xe 3.2.1sg |
||
cisco ios xe 3.3.0s |
||
cisco ios xe 3.2.1s |
||
cisco ios xe 3.2.2s |