Cisco IOS XR Vulnerability Allows Bypass of ACL Restrictions on ASR 9000 Devices
CVE-2014-3396

Currently unrated

Key Information:

Vendor: Cisco
Status: Ios Xr; Asr 9000 Rsp440 Router; Asr 9001; Asr 9006
Vendor: CVE Published:; 5 October 2014

Summary

Cisco IOS XR running on ASR 9000 devices is vulnerable due to improper handling of compression for port-range and address-range encoding. This flaw may allow remote attackers to circumvent access control list (ACL) restrictions implemented on Typhoon line cards through specially crafted transit traffic. Successful exploitation of this vulnerability can lead to unintentional exposure of network traffic, making it critical for administrators to ensure their systems are updated and properly configured. The issue has been associated with Bug ID CSCup30133.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Oct 5, 2014
Vulnerability Reserved
May 7, 2014