CVE-2005-2451
CVSS2.1
发布时间 :2005-08-03 00:00:00
修订时间 :2009-03-04 00:37:00
NMCOS    

[原文]Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on a local network segment to cause a denial of service (device reload) and possibly execute arbitrary code via a crafted IPv6 packet.


[CNNVD]Cisco IOS 任意代码执行漏洞 (CNNVD-200508-039)

        Cisco IOS 12.0至12.4 版本以及IOS XR 3.2以前版本(启用IPv6)允许本地网段中远程攻击者造成拒绝服务(设备重载),并且可能借助于特殊设计的的IPv6包执行任意代码。

- CVSS (基础分值)

CVSS分值: 2.1 [轻微(LOW)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/o:cisco:ios:12.2yoCisco IOS 12.2YO
cpe:/o:cisco:ios:12.1yeCisco IOS 12.1YE
cpe:/o:cisco:ios:12.1xvCisco IOS 12.1XV
cpe:/o:cisco:ios:12.3xlCisco IOS 12.3XL
cpe:/o:cisco:ios:12.3jaCisco IOS 12.3JA
cpe:/o:cisco:ios:12.0sCisco IOS 12.0S
cpe:/o:cisco:ios:12.2xfCisco IOS 12.2XF
cpe:/o:cisco:ios:12.2xeCisco IOS 12.2XE
cpe:/o:cisco:ios:12.2sxaCisco IOS 12.2SXA
cpe:/o:cisco:ios:12.2svCisco IOS 12.2SV
cpe:/o:cisco:ios:12.2xdCisco IOS 12.2XD
cpe:/o:cisco:ios:12.2xhCisco IOS 12.2XH
cpe:/o:cisco:ios:12.2xqCisco IOS 12.2XQ
cpe:/o:cisco:ios:12.2yxCisco IOS 12.2YX
cpe:/o:cisco:ios:12.3yiCisco IOS 12.3YI
cpe:/o:cisco:ios:12.2sxdCisco IOS 12.2SXD
cpe:/o:cisco:ios:12.3bCisco IOS 12.3B
cpe:/o:cisco:ios:12.3xsCisco IOS 12.3XS
cpe:/o:cisco:ios:12.2mcCisco IOS 12.2MC
cpe:/o:cisco:ios:12.2euCisco IOS 12.2EU
cpe:/o:cisco:ios:12.0slCisco IOS 12.0SL
cpe:/o:cisco:ios:12.2yqCisco IOS 12.2YQ
cpe:/o:cisco:ios:12.2bzCisco IOS 12.2BZ
cpe:/o:cisco:ios:12.2sebCisco IOS 12.2SEB
cpe:/o:cisco:ios:12.2bwCisco IOS 12.2BW
cpe:/o:cisco:ios:12.2cyCisco IOS 12.2CY
cpe:/o:cisco:ios:12.2szCisco IOS 12.2SZ
cpe:/o:cisco:ios:12.2yzCisco IOS 12.2YZ
cpe:/o:cisco:ios:12.2xkCisco IOS 12.2XK
cpe:/o:cisco:ios:12.2yrCisco IOS 12.2YR
cpe:/o:cisco:ios:12.2zpCisco IOS 12.2ZP
cpe:/o:cisco:ios:12.2znCisco IOS 12.2ZN
cpe:/o:cisco:ios:12.2bxCisco IOS 12.2BX
cpe:/o:cisco:ios:12.3xcCisco IOS 12.3XC
cpe:/o:cisco:ios:12.2xmCisco IOS 12.2XM
cpe:/o:cisco:ios:12.3xdCisco IOS 12.3XD
cpe:/o:cisco:ios:12.2zlCisco IOS 12.2ZL
cpe:/o:cisco:ios:12.2yvCisco IOS 12.2YV
cpe:/o:cisco:ios:12.2zeCisco IOS 12.2ZE
cpe:/o:cisco:ios:12.3xmCisco IOS 12.3XM
cpe:/o:cisco:ios:12.2yuCisco IOS 12.2YU
cpe:/o:cisco:ios:12.3xiCisco IOS 12.3XI
cpe:/o:cisco:ios:12.3ygCisco IOS 12.3YG
cpe:/o:cisco:ios:12.2byCisco IOS 12.2BY
cpe:/o:cisco:ios:12.3xhCisco IOS 12.3XH
cpe:/o:cisco:ios:12.3xjCisco IOS 12.3XJ
cpe:/o:cisco:ios:12.4mrCisco IOS 12.4MR
cpe:/o:cisco:ios:12.3xaCisco IOS 12.3XA
cpe:/o:cisco:ios:12.2mbCisco IOS 12.2MB
cpe:/o:cisco:ios:12.3ykCisco IOS 12.3YK
cpe:/o:cisco:ios:12.2yeCisco IOS 12.2YE
cpe:/o:cisco:ios:12.2ezCisco IOS 12.2EZ
cpe:/o:cisco:ios:12.2yyCisco IOS 12.2YY
cpe:/o:cisco:ios:12.4tCisco IOS 12.4T
cpe:/o:cisco:ios:12.3xkCisco IOS 12.3XK
cpe:/o:cisco:ios:12.2zfCisco IOS 12.2ZF
cpe:/o:cisco:ios:12.2xnCisco IOS 12.2XN
cpe:/o:cisco:ios:12.2ypCisco IOS 12.2YP
cpe:/o:cisco:ios:12.3yqCisco IOS 12.3YQ
cpe:/o:cisco:ios:12.2ynCisco IOS 12.2YN
cpe:/o:cisco:ios:12.2xaCisco IOS 12.2XA
cpe:/o:cisco:ios:12.2xjCisco IOS 12.2XJ
cpe:/o:cisco:ios:12.2mxCisco IOS 12.2MX
cpe:/o:cisco:ios:12.2zhCisco IOS 12.2ZH
cpe:/o:cisco:ios:12.2xgCisco IOS 12.2XG
cpe:/o:cisco:ios:12.3bcCisco IOS 12.3BC
cpe:/o:cisco:ios:12.2xuCisco IOS 12.2XU
cpe:/o:cisco:ios:12.3xeCisco IOS 12.3XE
cpe:/o:cisco:ios:12.3yfCisco IOS 12.3YF
cpe:/o:cisco:ios:12.3yaCisco IOS 12.3YA
cpe:/o:cisco:ios:12.2jkCisco IOS 12.2JK
cpe:/o:cisco:ios:12.3xgCisco IOS 12.3XG
cpe:/o:cisco:ios:12.2cxCisco IOS 12.2CX
cpe:/o:cisco:ios:12.1ybCisco IOS 12.1YB
cpe:/o:cisco:ios:12.2jaCisco IOS 12.2JA
cpe:/o:cisco:ios:12.2ewaCisco IOS 12.2EWA
cpe:/o:cisco:ios:12.2ydCisco IOS 12.2YD
cpe:/o:cisco:ios:12.3ytCisco IOS 12.3YT
cpe:/o:cisco:ios:12.2zjCisco IOS 12.2ZJ
cpe:/o:cisco:ios:12.2xtCisco IOS 12.2XT
cpe:/o:cisco:ios:12.2ytCisco IOS 12.2YT
cpe:/o:cisco:ios:12.2xbCisco IOS 12.2XB
cpe:/o:cisco:ios:12.1yhCisco IOS 12.1YH
cpe:/o:cisco:ios_xr:3.1.0Cisco IOS XR 3.1.0
cpe:/o:cisco:ios:12.2ywCisco IOS 12.2YW
cpe:/o:cisco:ios:12.2zaCisco IOS 12.2ZA
cpe:/o:cisco:ios:12.2ybCisco IOS 12.2YB
cpe:/o:cisco:ios:12.3ysCisco IOS 12.3YS
cpe:/o:cisco:ios:12.2bcCisco IOS 12.2BC
cpe:/o:cisco:ios:12.2yhCisco IOS 12.2YH
cpe:/o:cisco:ios:12.1ydCisco IOS 12.1YD
cpe:/o:cisco:ios:12.3xtCisco IOS 12.3XT
cpe:/o:cisco:ios:12.2soCisco IOS 12.2SO
cpe:/o:cisco:ios:12.2xwCisco IOS 12.2XW
cpe:/o:cisco:ios:12.3xbCisco IOS 12.3XB
cpe:/o:cisco:ios:12.2xiCisco IOS 12.2XI
cpe:/o:cisco:ios:12.2xrCisco IOS 12.2XR
cpe:/o:cisco:ios:12.3xqCisco IOS 12.3XQ
cpe:/o:cisco:ios:12.2yaCisco IOS 12.2YA
cpe:/o:cisco:ios:12.3yuCisco IOS 12.3YU
cpe:/o:cisco:ios:12.2zbCisco IOS 12.2ZB
cpe:/o:cisco:ios:12.3xyCisco IOS 12.3XY
cpe:/o:cisco:ios:12.2ygCisco IOS 12.2YG
cpe:/o:cisco:ios:12.3bwCisco IOS 12.3BW
cpe:/o:cisco:ios:12.2zgCisco IOS 12.2ZG
cpe:/o:cisco:ios:12.2ymCisco IOS 12.2YM
cpe:/o:cisco:ios:12.2yfCisco IOS 12.2YF
cpe:/o:cisco:ios:12.2suCisco IOS 12.2SU
cpe:/o:cisco:ios:12.1xuCisco IOS 12.1XU
cpe:/o:cisco:ios:12.3Cisco IOS 12.3
cpe:/o:cisco:ios:12.0stCisco IOS 12.0ST
cpe:/o:cisco:ios:12.4Cisco IOS 12.4
cpe:/o:cisco:ios:12.2bCisco IOS 12.2B
cpe:/o:cisco:ios:12.2yjCisco IOS 12.2YJ
cpe:/o:cisco:ios:12.1ycCisco IOS 12.1YC
cpe:/o:cisco:ios:12.3xuCisco IOS 12.3XU
cpe:/o:cisco:ios:12.2xcCisco IOS 12.2XC
cpe:/o:cisco:ios:12.3tCisco IOS 12.3T
cpe:/o:cisco:ios:12.3xwCisco IOS 12.3XW
cpe:/o:cisco:ios:12.1yiCisco IOS 12.1YI
cpe:/o:cisco:ios:12.0syCisco IOS 12.0SY
cpe:/o:cisco:ios:12.3xrCisco IOS 12.3XR
cpe:/o:cisco:ios:12.2sxbCisco IOS 12.2SXB
cpe:/o:cisco:ios:12.3xfCisco IOS 12.3XF
cpe:/o:cisco:ios:12.2sxCisco IOS 12.2SX
cpe:/o:cisco:ios:12.2ewCisco IOS 12.2EW
cpe:/o:cisco:ios:12.2swCisco IOS 12.2SW
cpe:/o:cisco:ios:12.2ycCisco IOS 12.2YC
cpe:/o:cisco:ios:12.2ylCisco IOS 12.2YL
cpe:/o:cisco:ios:12.2ddCisco IOS 12.2DD
cpe:/o:cisco:ios:12.1yfCisco IOS 12.1YF
cpe:/o:cisco:ios:12.3ydCisco IOS 12.3YD
cpe:/o:cisco:ios:12.2zdCisco IOS 12.2ZD
cpe:/o:cisco:ios_xr:3.0.1Cisco IOS XR 3.0.1
cpe:/o:cisco:ios:12.3yhCisco IOS 12.3YH
cpe:/o:cisco:ios:12.3yjCisco IOS 12.3YJ
cpe:/o:cisco:ios:12.3xxCisco IOS 12.3XX
cpe:/o:cisco:ios:12.2secCisco IOS 12.2SEC
cpe:/o:cisco:ios:12.2sxeCisco IOS 12.2SXE
cpe:/o:cisco:ios:12.2zoCisco IOS 12.2ZO
cpe:/o:cisco:ios:12.2zcCisco IOS 12.2ZC
cpe:/o:cisco:ios:12.2sCisco IOS 12.2S
cpe:/o:cisco:ios:12.2xzCisco IOS 12.2XZ
cpe:/o:cisco:ios:12.2syCisco IOS 12.2SY
cpe:/o:cisco:ios:12.2dxCisco IOS 12.2DX
cpe:/o:cisco:ios:12.2ykCisco IOS 12.2YK
cpe:/o:cisco:ios:12.2tCisco IOS 12.2T
cpe:/o:cisco:ios:12.2xlCisco IOS 12.2XL

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:5445Cisco Systems Internetwork Operating System IPv6 Packet DoS, Code Execution Vulnerability
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2451
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2451
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200508-039
(官方数据源) CNNVD

- 其它链接及资源

http://www.us-cert.gov/cas/techalerts/TA05-210A.html
(UNKNOWN)  CERT  TA05-210A
http://www.kb.cert.org/vuls/id/930892
(UNKNOWN)  CERT-VN  VU#930892
http://xforce.iss.net/xforce/xfdb/21591
(PATCH)  XF  cisco-ios-ipv6-packet-command-execution(21591)
http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml
(VENDOR_ADVISORY)  CISCO  20050729 IPv6 Crafted Packet Vulnerability
http://www.securityfocus.com/bid/14414
(UNKNOWN)  BID  14414
http://www.osvdb.org/18332
(UNKNOWN)  OSVDB  18332
http://securitytracker.com/id?1014598
(UNKNOWN)  SECTRACK  1014598
http://secunia.com/advisories/16272
(UNKNOWN)  SECUNIA  16272
http://archives.neohapsis.com/archives/fulldisclosure/2005-07/0663.html
(UNKNOWN)  FULLDISC  20050729 Cisco IOS Shellcode Presentation

- 漏洞信息

Cisco IOS 任意代码执行漏洞
低危 边界条件错误
2005-08-03 00:00:00 2009-03-04 00:00:00
远程  
        Cisco IOS 12.0至12.4 版本以及IOS XR 3.2以前版本(启用IPv6)允许本地网段中远程攻击者造成拒绝服务(设备重载),并且可能借助于特殊设计的的IPv6包执行任意代码。

- 公告与补丁

        暂无数据

- 漏洞信息

18332
Cisco IOS Crafted IPv6 Packet Remote Code Execution
Remote / Network Access Denial of Service, Input Manipulation
Loss of Integrity, Loss of Availability

- 漏洞描述

Cisco IOS contains a flaw that may allow a malicious user to cause denial of service conditions or execute arbitrary code. The issue is triggered when a crafted IPv6 packet is sent to a router running a vulnerable version of IPv6 code. It is possible that the flaw may allow a denial of service or the execution of arbitrary code, resulting in a loss of integrity, and/or availability.

- 时间线

2005-07-27 Unknow
Unknow Unknow

- 解决方案

Upgrade to the version appropriate for your installation, as outlined in the vulnerable version matrix provided by Cisco. It is also possible to correct the flaw by implementing the following workaround(s): Disable support for IPv6. IPv6 support is enabled on most versions of IOS by default. To disable IPv6 on a router which supports it, the "no ipv6 enable" and "no ipv6 address" commands must be given within the configuration of each interface on the router.

- 相关参考

- 漏洞作者

- 漏洞信息

Cisco IOS IPv6 Processing Arbitrary Code Execution Vulnerability
Boundary Condition Error 14414
Yes No
2005-07-27 12:00:00 2007-06-28 03:58:00
This issue was reported by Michael Lynn at the Black Hat security conference.

- 受影响的程序版本

Cisco IOS XR 3.1 .0
Cisco IOS XR 3.0.1
Cisco IOS XR
Cisco IOS 12.4T
Cisco IOS 12.4MR
Cisco IOS 12.4
Cisco IOS 12.3YU
Cisco IOS 12.3YS
Cisco IOS 12.3YQ
Cisco IOS 12.3YK
Cisco IOS 12.3YJ
Cisco IOS 12.3YI
Cisco IOS 12.3YH
Cisco IOS 12.3YG
Cisco IOS 12.3YF
Cisco IOS 12.3YD
Cisco IOS 12.3YA
Cisco IOS 12.3XY
Cisco IOS 12.3XX
Cisco IOS 12.3XW
Cisco IOS 12.3XU
Cisco IOS 12.3XT
Cisco IOS 12.3XS
Cisco IOS 12.3XR
Cisco IOS 12.3XQ
Cisco IOS 12.3XM
Cisco IOS 12.3XL
Cisco IOS 12.3XK
Cisco IOS 12.3XJ
Cisco IOS 12.3XI
Cisco IOS 12.3XH
Cisco IOS 12.3XG
Cisco IOS 12.3XF
Cisco IOS 12.3XE
Cisco IOS 12.3XD
Cisco IOS 12.3XC
Cisco IOS 12.3XB
Cisco IOS 12.3XA
Cisco IOS 12.3T
Cisco IOS 12.3JK
Cisco IOS 12.3JA
Cisco IOS 12.3BW
Cisco IOS 12.3BC
Cisco IOS 12.3B
Cisco IOS 12.3
Cisco IOS 12.2ZP
Cisco IOS 12.2ZO
Cisco IOS 12.2ZN
Cisco IOS 12.2ZL
Cisco IOS 12.2ZJ
Cisco IOS 12.2ZH
Cisco IOS 12.2ZG
Cisco IOS 12.2ZF
Cisco IOS 12.2ZE
Cisco IOS 12.2ZD
Cisco IOS 12.2ZC
Cisco IOS 12.2ZA
Cisco IOS 12.2YZ
Cisco IOS 12.2YV
Cisco IOS 12.2YU
Cisco IOS 12.2YT
Cisco IOS 12.2XZ
Cisco IOS 12.2XW
Cisco IOS 12.2XU
Cisco IOS 12.2XT
Cisco IOS 12.2XR
Cisco IOS 12.2XQ
Cisco IOS 12.2XN
Cisco IOS 12.2XM
Cisco IOS 12.2XL
Cisco IOS 12.2XK
Cisco IOS 12.2XJ
Cisco IOS 12.2XJ
Cisco IOS 12.2XI
Cisco IOS 12.2XH
Cisco IOS 12.2XG
Cisco IOS 12.2XF
Cisco IOS 12.2XE
Cisco IOS 12.2XD
Cisco IOS 12.2XC
Cisco IOS 12.2XB
Cisco IOS 12.2XA
Cisco IOS 12.2T
Cisco IOS 12.2SZ
Cisco IOS 12.2SY
Cisco IOS 12.2SXE
Cisco IOS 12.2SXD
Cisco IOS 12.2SXB
Cisco IOS 12.2SXA
Cisco IOS 12.2SX
Cisco IOS 12.2SW
Cisco IOS 12.2SV
Cisco IOS 12.2SU
Cisco IOS 12.2SO
Cisco IOS 12.2SEC
Cisco IOS 12.2SEB
Cisco IOS 12.2SEA
Cisco IOS 12.2SE
Cisco IOS 12.2S
Cisco IOS 12.2MX
Cisco IOS 12.2MC
Cisco IOS 12.2MB
Cisco IOS 12.2JK
Cisco IOS 12.2JA
Cisco IOS 12.2EZ
Cisco IOS 12.2EY
Cisco IOS 12.2EX
Cisco IOS 12.2EWA
Cisco IOS 12.2EW
Cisco IOS 12.2EU
Cisco IOS 12.2DX
Cisco IOS 12.2DD
Cisco IOS 12.2CZ
Cisco IOS 12.2CY
Cisco IOS 12.2CX
Cisco IOS 12.2BZ
Cisco IOS 12.2BY
Cisco IOS 12.2BX
Cisco IOS 12.2BW
Cisco IOS 12.2BC
Cisco IOS 12.2B
Cisco IOS 12.1YI
Cisco IOS 12.1YH
Cisco IOS 12.1YF
Cisco IOS 12.1YE
Cisco IOS 12.1YD
Cisco IOS 12.1YC
Cisco IOS 12.1YB
Cisco IOS 12.1XV
Cisco IOS 12.1XU
Cisco IOS 12.0SY
Cisco IOS 12.0SX
Cisco IOS 12.0ST
Cisco IOS 12.0SL
Cisco IOS 12.0S
Cisco IOS XR 3.2
Cisco IOS 12.4(2)T
Cisco IOS 12.4(2)MR
Cisco IOS 12.4(1)
Cisco IOS 12.4(1)
Cisco IOS 12.3(9d)
Cisco IOS 12.3(9a)BC6
Cisco IOS 12.3(8)YI1
Cisco IOS 12.3(8)YG2
Cisco IOS 12.3(8)YA1
Cisco IOS 12.3(8)XY6
Cisco IOS 12.3(8)T8
Cisco IOS 12.3(7)XR4
Cisco IOS 12.3(7)XI4
Cisco IOS 12.3(7)T9
Cisco IOS 12.3(6e)
Cisco IOS 12.3(6e)
Cisco IOS 12.3(5e)
Cisco IOS 12.3(5a)B5
Cisco IOS 12.3(4)XQ1
Cisco IOS 12.3(4)XK3
Cisco IOS 12.3(4)XG4
Cisco IOS 12.3(4)JA
Cisco IOS 12.3(4)JA
Cisco IOS 12.3(3h)
Cisco IOS 12.3(2)XE3
Cisco IOS 12.3(2)XC3
Cisco IOS 12.3(2)XC3
Cisco IOS 12.3(2)XA4
Cisco IOS 12.3(2)JK
Cisco IOS 12.3(15)
Cisco IOS 12.3(14)YU
Cisco IOS 12.3(14)YT
Cisco IOS 12.3(14)YQ1
Cisco IOS 12.3(14)T2
Cisco IOS 12.3(13a)BC
Cisco IOS 12.3(13a)
Cisco IOS 12.3(12b)
Cisco IOS 12.3(11)YW
Cisco IOS 12.3(11)YS
Cisco IOS 12.3(11)YJ
Cisco IOS 12.3(11)YJ
Cisco IOS 12.3(11)YF3
Cisco IOS 12.3(11)T5
Cisco IOS 12.3(10d)
Cisco IOS 12.2(4)YA10
Cisco IOS 12.2(4)MB13b
Cisco IOS 12.2(26)SV
Cisco IOS 12.2(25)SW3a
Cisco IOS 12.2(25)SV2
Cisco IOS 12.2(25)SEC1
Cisco IOS 12.2(25)SEB3
Cisco IOS 12.2(25)S4
Cisco IOS 12.2(25)EZ1
Cisco IOS 12.2(25)EZ
Cisco IOS 12.2(25)EWA1
Cisco IOS 12.2(24)SV1
Cisco IOS 12.2(23)SV1
Cisco IOS 12.2(22)SV1
Cisco IOS 12.2(20)S8
Cisco IOS 12.2(20)EWA2
Cisco IOS 12.2(20)EW2
Cisco IOS 12.2(20)EU1
Cisco IOS 12.2(18)SXE1
Cisco IOS 12.2(18)SXD4
Cisco IOS 12.2(18)SXD4
Cisco IOS 12.2(18)SV3
Cisco IOS 12.2(18)S9
Cisco IOS 12.2(17d)SXB8
Cisco IOS 12.2(17)ZD3
Cisco IOS 12.2(15)T16
Cisco IOS 12.2(15)MC2c
Cisco IOS 12.2(15)JK4
Cisco IOS 12.2(15)BC2h
Cisco IOS 12.2(14)S14
Cisco IOS 12.2(13)ZD3
Cisco IOS 12.2(13)T16
Cisco IOS 12.0(31)S
Cisco IOS 12.0(30)S2
Cisco IOS 12.0(28)S3
Cisco IOS 12.0(26)S6

- 不受影响的程序版本

Cisco IOS XR 3.2
Cisco IOS 12.4(2)T
Cisco IOS 12.4(2)MR
Cisco IOS 12.4(1)
Cisco IOS 12.4(1)
Cisco IOS 12.3(9d)
Cisco IOS 12.3(9a)BC6
Cisco IOS 12.3(8)YI1
Cisco IOS 12.3(8)YG2
Cisco IOS 12.3(8)YA1
Cisco IOS 12.3(8)XY6
Cisco IOS 12.3(8)T8
Cisco IOS 12.3(7)XR4
Cisco IOS 12.3(7)XI4
Cisco IOS 12.3(7)T9
Cisco IOS 12.3(6e)
Cisco IOS 12.3(6e)
Cisco IOS 12.3(5e)
Cisco IOS 12.3(5a)B5
Cisco IOS 12.3(4)XQ1
Cisco IOS 12.3(4)XK3
Cisco IOS 12.3(4)XG4
Cisco IOS 12.3(4)JA
Cisco IOS 12.3(4)JA
Cisco IOS 12.3(3h)
Cisco IOS 12.3(2)XE3
Cisco IOS 12.3(2)XC3
Cisco IOS 12.3(2)XC3
Cisco IOS 12.3(2)XA4
Cisco IOS 12.3(2)JK
Cisco IOS 12.3(15)
Cisco IOS 12.3(14)YU
Cisco IOS 12.3(14)YT
Cisco IOS 12.3(14)YQ1
Cisco IOS 12.3(14)T2
Cisco IOS 12.3(13a)BC
Cisco IOS 12.3(13a)
Cisco IOS 12.3(12b)
Cisco IOS 12.3(11)YW
Cisco IOS 12.3(11)YS
Cisco IOS 12.3(11)YJ
Cisco IOS 12.3(11)YJ
Cisco IOS 12.3(11)YF3
Cisco IOS 12.3(11)T5
Cisco IOS 12.3(10d)
Cisco IOS 12.2(4)YA10
Cisco IOS 12.2(4)MB13b
Cisco IOS 12.2(26)SV
Cisco IOS 12.2(25)SW3a
Cisco IOS 12.2(25)SV2
Cisco IOS 12.2(25)SEC1
Cisco IOS 12.2(25)SEB3
Cisco IOS 12.2(25)S4
Cisco IOS 12.2(25)EZ1
Cisco IOS 12.2(25)EZ
Cisco IOS 12.2(25)EWA1
Cisco IOS 12.2(24)SV1
Cisco IOS 12.2(23)SV1
Cisco IOS 12.2(22)SV1
Cisco IOS 12.2(20)S8
Cisco IOS 12.2(20)EWA2
Cisco IOS 12.2(20)EW2
Cisco IOS 12.2(20)EU1
Cisco IOS 12.2(18)SXE1
Cisco IOS 12.2(18)SXD4
Cisco IOS 12.2(18)SXD4
Cisco IOS 12.2(18)SV3
Cisco IOS 12.2(18)S9
Cisco IOS 12.2(17d)SXB8
Cisco IOS 12.2(17)ZD3
Cisco IOS 12.2(15)T16
Cisco IOS 12.2(15)MC2c
Cisco IOS 12.2(15)JK4
Cisco IOS 12.2(15)BC2h
Cisco IOS 12.2(14)S14
Cisco IOS 12.2(13)ZD3
Cisco IOS 12.2(13)T16
Cisco IOS 12.0(31)S
Cisco IOS 12.0(30)S2
Cisco IOS 12.0(28)S3
Cisco IOS 12.0(26)S6

- 漏洞讨论

The IPv6 processing functionality of Cisco IOS is prone to a vulnerability that allows a remote attacker to execute arbitrary code.

A successful attack may allow the attacker to execute arbitrary code and gain unauthorized access to the device. The attacker can also leverage this issue to cause an affected device to reload, denying service to legitimate users.

This issue may be related to BID 12368 (Cisco IOS IPv6 Processing Remote Denial Of Service Vulnerability).

Cisco has stated that exploits of this vulnerability in Cisco IOS XR may cause the IPv6 neighbor discovery process to restart. If exploited repeatedly, this could result in a prolonged denial of service affecting IPv6 traffic traveling through the device.

- 漏洞利用

ISS has developed a working exploit for this issue through the "link local" interface. This exploit is not publicly available or known to be circulating in the wild.

- 解决方案

Please see the referenced advisory for more information.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站