Published: 28/10/2014 Updated: 29/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Cisco IOS 15.4(3)S0b on ASR901 devices makes incorrect decisions to use the CPU for IPv4 packet processing, which allows remote malicious users to cause a denial of service (BGP neighbor flapping) by sending many crafted IPv4 packets, aka Bug ID CSCuo29736.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios 15.4\\(3\\)s0b
cisco asr901 -

A vulnerability in Internet Protocol version 4 (IPv4) packet processing of the Cisco ASR901 could allow an unauthenticated, remote attacker to flood packets to the ASR901 CPU The vulnerability is due to punting crafted IPv4 packets to the CPU for processing An attacker could exploit this vulnerability by sending specifically crafted IPv4 packets ...

CWE-399 http://tools.cisco.com/security/center/viewAlert.x?alertId=36195 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3293 http://www.securitytracker.com/id/1031122 http://www.securityfocus.com/bid/70744 http://secunia.com/advisories/61830 https://exchange.xforce.ibmcloud.com/vulnerabilities/97769 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20141027-CVE-2014-3293

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3293

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect