Cisco IOS Software Remote Denial of Service Vulnerability (CVE-2014-2131)
Release date:
Updated on:
Affected Systems:
Cisco IOS 15.3
Cisco IOS 15.2
Cisco IOS 12.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 66515
CVE (CAN) ID: CVE-2014-2131
Cisco IOS is an interconnected network operating system used on most Cisco system routers and network switches.
Cisco IOS has a security vulnerability in the implementation of data packet drivers. Remote attackers can exploit this vulnerability to overload devices and reject services through a series of VSS or BFD data packets.
<* Source: Cisco
Link: http://secunia.com/advisories/57633/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Cisco
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.cisco.com/go/psirt
Http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140326-RSP72010GE