Denial of Service in Cisco IOS XE on ASR 1000 Series Devices

CVE-2013-5543

Summary

The vulnerability in Cisco IOS XE software versions prior to 3.4.2S and 3.5.1S impacts 1000 ASR (Aggregation Services Router) devices, enabling remote attackers to trigger a denial of service condition. By sending malformed ICMP error packets related to TCP or UDP sessions being inspected by the device's Zone-Based Firewall (ZBFW), attackers can cause a device reload. This vulnerability highlights the importance of timely software updates to maintain device security and network stability.

References