Denial of Service Vulnerability in Cisco IOS XR for ASR 9000 and CRS Series Devices
CVE-2012-2488

Currently unrated

Key Information:

Vendor: Cisco
Status: Ios Xr; Asr 9000 Rsp440 Router
Vendor: CVE Published:; 31 May 2012

Summary

Cisco IOS XR prior to version 4.2.1 on ASR 9000 and CRS series devices is vulnerable to a denial of service attack. By sending specially crafted packets, a remote attacker can disrupt packet transmission, leading to an outage. This vulnerability is identified by Bug IDs CSCty94537 and CSCtz62593, and it underscores the critical need for timely updates to the IOS XR software to maintain network security.

References

http://secunia.com/advisories/49329

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id?1027104

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
May 31, 2012
Vulnerability Reserved
May 7, 2012