The NTP implementation in Cisco IOS 12.0 up to and including 12.4 and 15.0 up to and including 15.1, and IOS XE 2.1 up to and including 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote malicious users to cause a denial of service (device reload) by leveraging an MSDP peer relationship, aka Bug ID CSCuc81226.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios xe 2.1.0 |
||
cisco ios xe 2.1.2 |
||
cisco ios xe 2.3.1 |
||
cisco ios xe 2.3.2 |
||
cisco ios xe 2.4.1 |
||
cisco ios xe 2.5.1 |
||
cisco ios xe 2.6.0 |
||
cisco ios xe 3.1.2s |
||
cisco ios xe 3.1.4s |
||
cisco ios xe 3.2.1s |
||
cisco ios xe 3.2.2s |
||
cisco ios xe 3.2.3sg |
||
cisco ios xe 2.4.2 |
||
cisco ios xe 2.4.3 |
||
cisco ios xe 2.4.4 |
||
cisco ios xe 2.5.0 |
||
cisco ios xe 3.2.00.xo.15.0\\(2\\)xo |
||
cisco ios xe 3.2.0s |
||
cisco ios xe 3.2.0sg |
||
cisco ios xe 3.2.0xo |
||
cisco ios xe 2.2.1 |
||
cisco ios xe 2.2.2 |
||
cisco ios xe 2.2.3 |
||
cisco ios xe 2.3.0 |
||
cisco ios xe 2.6.2 |
||
cisco ios xe 3.1.0s |
||
cisco ios xe 3.1.0sg |
||
cisco ios xe 3.1.1s |
||
cisco ios xe 3.2.4sg |
||
cisco ios xe 3.3.0s |
||
cisco ios xe 3.3.0sg |
||
cisco ios xe 2.1.1 |
||
cisco ios xe 2.3.1t |
||
cisco ios xe 2.4.0 |
||
cisco ios xe 2.5.2 |
||
cisco ios xe 2.6.1 |
||
cisco ios xe 3.1.1sg |
||
cisco ios xe 3.1.3s |
||
cisco ios xe 3.2.1sg |
||
cisco ios xe 3.2.2sg |
||
cisco ios 15.0 |
||
cisco ios 12.4 |
||
cisco ios 12.2 |
||
cisco ios 12.1 |
||
cisco ios 12.0 |
||
cisco ios 15.1 |
||
cisco ios 12.3 |