Cisco IOS XE 3.4 prior to 3.4.2S and 3.5 prior to 3.5.1S on 1000 ASR devices allows remote malicious users to cause a denial of service (device reload) via malformed ICMP error packets associated with a (1) TCP or (2) UDP session that is under inspection by the Zone-Based Firewall (ZBFW) component, aka Bug ID CSCtt26470.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios_xe 3.4.0as |
||
cisco ios_xe 3.4.0s |
||
cisco ios_xe 3.4.1s |
||
cisco asr_1006 - |
||
cisco asr_1023_router - |
||
cisco asr_1002-x - |
||
cisco asr_1004 - |
||
cisco asr_1001 - |
||
cisco asr_1002 - |