Test ID:	1.3.6.1.4.1.25623.1.0.106927
Category:	CISCO
Title:	Cisco IOS XR Software Multicast Source Discovery Protocol Session Denial of Service Vulnerability (cisco-sa-20170705-iosxr)
Summary:	A vulnerability in Multicast Source Discovery Protocol (MSDP); ingress packet processing for Cisco IOS XR Software could allow an unauthenticated, remote; attacker to cause the MSDP session to be unexpectedly reset, causing a short denial of service; (DoS) condition. The MSDP session will restart within a few seconds.
Description:	Summary: A vulnerability in Multicast Source Discovery Protocol (MSDP) ingress packet processing for Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the MSDP session to be unexpectedly reset, causing a short denial of service (DoS) condition. The MSDP session will restart within a few seconds. Vulnerability Insight: The vulnerability is due to incorrect error handling of an MSDP packet that contains an error in the packet header. An attacker could exploit this vulnerability by sending a malformed MSDP packet for an established MSDP session to the targeted device. Vulnerability Impact: An exploit could allow the attacker to cause a short DoS condition if the MSDP session restarts. Solution: See the referenced vendor advisory for a solution. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6731 http://www.securitytracker.com/id/1038820
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.