Remote DoS vulnerability in Cisco IOS Multicast Source Protocol

Release date:
Updated on:

Affected Systems:
Cisco IOS 15.x
Unaffected system:
Cisco IOS 15.2 (2) T1
Cisco IOS 15.1 (4) M3a
Cisco IOS 15.1 (4) M2
Cisco IOS 15.1 (2) GC2
Cisco IOS 15.0 (1) M8
Description:
--------------------------------------------------------------------------------
Bugtraq id: 52759
Cve id: CVE-2012-0382

MSDP is a protocol used to connect multiple PIM-SM domains, allowing multicast sources in a group to make all RP in different domains known.

When receiving an MSDP packet containing compressed IGMP data from a peer vro configured with the external MSDP, the affected device may be overloaded. This vulnerability can be exploited only when the vro is explicitly added to the multicast group. The destination address of the MSDP packet is a single transmission address that can be sent to any IP address on the affected device, including the return address. Traffic packets do not trigger this vulnerability.

<* Source: Cisco

Link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-msdp
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

Cisco
-----
Cisco has released a Security Bulletin (cisco-sa-20120328-msdp) and patches for this:

Cisco-sa-20120328-msdp: Cisco IOS Software Multicast Source Discovery Protocol Vulnerability

Link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120328-msdp