Published: 25/05/2014 Updated: 05/10/2021

CVSS v2 Base Score: 6.1 | Impact Score: 6.9 | Exploitability Score: 6.5

VMScore: 543

Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C

Cisco IOS XE on ASR1000 devices, when PPPoE termination is enabled, allows remote malicious users to cause a denial of service (device reload) via a malformed PPPoE packet, aka Bug ID CSCuo55180.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios_xe -
cisco asr_1002-x -
cisco asr_1001 -
cisco asr_1002_fixed_router -
cisco asr_1002 -
cisco asr_1004 -
cisco asr_1006 -
cisco asr_1013 -
cisco asr_1023_router -

A vulnerability in the PPP over Ethernet (PPPoE) processing code of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a reload of the affected device, which could lead to a denial of service (DoS) condition The vulnerability is due to improper processing of certain malformed PPPoE packets An attacker could exploit ...

CWE-20 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3284 http://tools.cisco.com/security/center/viewAlert.x?alertId=34346 http://secunia.com/advisories/58405 http://www.securityfocus.com/bid/67603 http://www.securitytracker.com/id/1030283 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140527-CVE-2014-3284

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3284

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect