CISCO : Cisco IOS Software Border Gateway Protocol Message Processing Denial of Service Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.106145

Categoría: CISCO

Título: Cisco IOS Software Border Gateway Protocol Message Processing Denial of Service Vulnerability

Resumen: A vulnerability in Border Gateway Protocol (BGP) message processing;functions of Cisco IOS Software could allow an authenticated, remote attacker to cause an affected;device to reload.;;The vulnerability is due to improper processing of crafted BGP attributes. An attacker could exploit this;vulnerability by sending crafted BGP messages to an affected device for processing when certain conditions;are met. A successful exploit could allow the attacker to cause the affected device to reload, resulting in;a denial of service (DoS) condition.;;Possible workarounds for this issue include setting a maxpath-limit value for BGP MIBs or suppressing use of;BGP MIBs.

Descripción: Summary:
A vulnerability in Border Gateway Protocol (BGP) message processing
functions of Cisco IOS Software could allow an authenticated, remote attacker to cause an affected
device to reload.

The vulnerability is due to improper processing of crafted BGP attributes. An attacker could exploit this
vulnerability by sending crafted BGP messages to an affected device for processing when certain conditions
are met. A successful exploit could allow the attacker to cause the affected device to reload, resulting in
a denial of service (DoS) condition.

Possible workarounds for this issue include setting a maxpath-limit value for BGP MIBs or suppressing use of
BGP MIBs.

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
4.9

CVSS Vector:
AV:N/AC:H/Au:S/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-1459
BugTraq ID: 91800
http://www.securityfocus.com/bid/91800
Cisco Security Advisory: 20160715 Cisco IOS and IOS XE Software Border Gateway Protocol Message Processing Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp
http://www.securitytracker.com/id/1036321

Copyright Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.106145
Categoría:	CISCO
Título:	Cisco IOS Software Border Gateway Protocol Message Processing Denial of Service Vulnerability
Resumen:	A vulnerability in Border Gateway Protocol (BGP) message processing;functions of Cisco IOS Software could allow an authenticated, remote attacker to cause an affected;device to reload.;;The vulnerability is due to improper processing of crafted BGP attributes. An attacker could exploit this;vulnerability by sending crafted BGP messages to an affected device for processing when certain conditions;are met. A successful exploit could allow the attacker to cause the affected device to reload, resulting in;a denial of service (DoS) condition.;;Possible workarounds for this issue include setting a maxpath-limit value for BGP MIBs or suppressing use of;BGP MIBs.
Descripción:	Summary: A vulnerability in Border Gateway Protocol (BGP) message processing functions of Cisco IOS Software could allow an authenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper processing of crafted BGP attributes. An attacker could exploit this vulnerability by sending crafted BGP messages to an affected device for processing when certain conditions are met. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. Possible workarounds for this issue include setting a maxpath-limit value for BGP MIBs or suppressing use of BGP MIBs. Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.9 CVSS Vector: AV:N/AC:H/Au:S/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1459 BugTraq ID: 91800 http://www.securityfocus.com/bid/91800 Cisco Security Advisory: 20160715 Cisco IOS and IOS XE Software Border Gateway Protocol Message Processing Denial of Service Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp http://www.securitytracker.com/id/1036321
Copyright	Copyright (C) 2016 Greenbone AG