Title: Cisco IOS UDP Denial of Service Vulnerability
Severity: CRITICAL
Description:
A potential denial of service condition may exist in Cisco's IOS firmware.
The problem reportedly occurs when a large number of UDP packets are sent to a device running IOS. This causes the system to use all available CPU resources and thus become unresponsive. The device may have to be reset manually if the attack is successful.
Although unconfirmed this vulnerability may present itself when the flood of UDP traffic is received on port 514.
The denial of service may affect hosts or networks that depend on the device.
Further details are forthcoming.
Affected Products:
- Cisco IOS 12.0
- Cisco IOS 12.0.1
- Cisco IOS 12.0.2
- Cisco IOS 12.0.3
- Cisco IOS 12.0.4
- Cisco IOS 12.0.5
- Cisco IOS 12.0.6
- Cisco IOS 12.0.7
- Cisco IOS 12.1
- Cisco IOS 12.2
References:
- Cisco Systems: Cisco Product Security Incident Response
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
