Denial of Service Vulnerability in Cisco IOS XE on ASR 1000 Series Routers
CVE-2013-1166

Currently unrated

Key Information:

Vendor
Cisco
Status
Asr 1001
Asr 1002
Asr 1002-x
Asr 1002 Fixed Router
Vendor
CVE Published:
11 April 2013

Summary

A vulnerability in Cisco IOS XE software on the 1000 series Aggregation Services Routers allows remote attackers to launch a denial of service attack. When VRF-aware NAT and SIP ALG are enabled, sending a multitude of SIP packets can lead to a system crash that requires a card reload. This can disrupt network services and affect availability, necessitating immediate attention to safeguard against such exploits.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.