Published: 18/07/2014 Updated: 12/01/2017

CVSS v2 Base Score: 5.7 | Impact Score: 6.9 | Exploitability Score: 5.5

VMScore: 507

Vector: AV:A/AC:M/Au:N/C:N/I:N/A:C

Cisco IOS XR 4.3.4 and previous versions on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote malicious users to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios_xr 4.3.1
cisco ios_xr
cisco ios_xr 4.3.2
cisco ios_xr 4.3.0
cisco asr_9010 -
cisco asr_9904 -
cisco asr_9912 -
cisco asr_9922 -
cisco asr_9000_rsp440_router -
cisco asr_9006 -
cisco asr_9001 -

A vulnerability in parsing crafted Multiprotocol Label Switching (MPLS) packets in Cisco IOS XR Software for ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause a lockup and eventual reload of a network processor chip and a line card processing traffic The vulnerability is due to insufficient l ...

CWE-20 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3321 http://tools.cisco.com/security/center/viewAlert.x?alertId=34936 http://www.securitytracker.com/id/1030597 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140715-CVE-2014-3321

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3321

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect