Denial of Service Vulnerability in Cisco IOS and CatOS VLAN Trunking Protocol
CVE-2008-4963

Currently unrated

Key Information:

Vendor: Cisco
Status: Ios; Catos
Vendor: CVE Published:; 6 November 2008

Summary

An unspecified vulnerability in the VLAN Trunking Protocol (VTP) implementation within Cisco IOS and CatOS can lead to a denial of service condition. When the VTP operating mode is set to a non-transparent state, an attacker could craft a malicious VTP packet directed towards a switch interface that is configured as a trunk port. This action may result in the affected device becoming unresponsive, causing it to either reload or hang, thus disrupting network operations.

References

http://secunia.com/advisories/32573

third-party-advisoryx_refsource_SECUNIA

http://www.cisco.com/en/US/products/products_security_res...

vendor-advisoryx_refsource_CISCO

http://securitytracker.com/id?1021143

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Nov 6, 2008
Vulnerability Reserved
Nov 6, 2008