|
|
>> Cisco IOS Denial of Service and Security Bypass Vulnerabilities
|
Multiple vulnerabilities have been identified in Cisco IOS, which could be exploited by attackers to bypass security restrictions, disclose sensitive information, cause a denial of service.
Multiple errors exist when handling specially crafted SSL, PIM (Protocol Independent Multicast), SCCP (Skinny Call Control Protocol), SIP (Session Initiation Protocol), HTTP transit or L2TP (Layer 2 Tunneling Protocol) packets, or when processing certain IPS signatures that use the SERVICE.DNS engine, or packets sent to the Multi Protocol Label Switching (MPLS) Forwarding Infrastructure (MFI), which could allow attackers to cause a vulnerable device to reload, creating a denial of service condition.
An error exists within devices configured for Multiprotocol Label Switching (MPLS) Virtual Private Networks (VPNs) or VPN Routing and Forwarding Lite (VRF Lite) and using Border Gateway Protocol (BGP) between Customer Edge (CE) and Provider Edge (PE) devices, which may permit information to propagate between VPNs.
A design error exists in Cisco uBR10012 series devices where Simple Network Management Protocol (SNMP) read/write access to the device is automatically enabled if configured for linecard redundancy, which can be exploited by an attacker to gain complete control of the device.
An error exists in Cisco 10000, uBR10012 and uBR7200 series devices that use a User Datagram Protocol (UDP) based Inter-Process Communication (IPC) channel that is externally reachable, which could allow an attacker to cause a denial of service.
Affected Products
Cisco IOS 12.x
Solution
Upgrade to fixed versions :
http://www.cisco.com/go/psirt
References
http://www.vupen.com/english/advisories/2008/2670
http://www.cisco.com/warp/public/707/cisco-sa-20080924-ssl.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-iosips.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-sip.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-vpn.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-mfi.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-ipc.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-ubr.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-multicast.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-sccp.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-iosfw.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20080924-l2tp.shtml
Credits
Vulnerabilities reported by the vendor.
ChangeLog
2008-09-25 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
