Denial of Service Vulnerability in Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core Software
CVE-2017-6729

7.5HIGH

Key Information:

Vendor

Cisco
Status
Cisco Staros
Vendor
CVE Published:
10 July 2017

What is CVE-2017-6729?

A vulnerability exists in the Border Gateway Protocol (BGP) processing functionality of the Cisco StarOS operating system. An unauthenticated, remote attacker could exploit this flaw within the Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core Software, causing the BGP process to reload and thus resulting in a denial of service (DoS) condition. This issue occurs when BGP is enabled on the affected systems, affecting various versions of the Cisco StarOS. Organizations utilizing these products should apply the necessary updates to safeguard against potential disruptions.

Affected Version(s)

Cisco StarOS Cisco StarOS

References

http://www.securityfocus.com/bid/100015
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1038819
vdb-entryx_refsource_SECTRACK
https://tools.cisco.com/security/center/content/CiscoSecu...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2017-6729 : Denial of Service Vulnerability in Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core Software