Cisco ios xe Software SNMP request Processing Denial of Service Vulnerability
Release date:
Updated on:
Affected Systems:
Cisco ios xe 3.9.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 63982
CVE (CAN) ID: CVE-2013-6700
Cisco IOS is an interconnected network operating system used on most Cisco system routers and network switches.
The SNMP module of Cisco ios xe has a security vulnerability. unauthenticated remote attackers can exploit this vulnerability to reload SNMP Processes on affected devices. This vulnerability occurs because some MIB of SNMP requests are not correctly handled.
<* Source: Cisco
Link: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6700
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Cisco
-----
Cisco has released a Security Bulletin (CVE-2013-6700) and patches for this:
CVE-2013-6700: Cisco ios xr Software SNMP Denial of Service Vulnerability
Link: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6700