Release date:
Updated on:
Affected Systems:
Cisco ios xe 3.9.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 63979
CVE (CAN) ID: CVE-2013-6706
Cisco IOS is an interconnected network operating system used on most Cisco system routers and network switches.
When Cisco ios xe processes an IP packet header in an MPLS packet, the CEF module may encounter an error. Attackers can exploit this vulnerability to overload the device. To successfully exploit this vulnerability, you must allow "ip cef accounting", "tcp adjust-mss", and MPLS data packets as IP data packets to traverse and exit the affected device.
<* Source: Cisco
Link: http://secunia.com/advisories/55817/
Http://secunia.com/advisories/55817/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Cisco
-----
Cisco has released a Security Bulletin (CVE-2013-6706) and patches for this:
CVE-2013-6706: Cisco ios xe ip Header Sanity Check Denial of Service Vulnerability
Link: http://secunia.com/advisories/55817/