Cisco announced that NCS 6000 and Carrier Routing System (CRS-X) heavy pieces of iron used in the market for service providers have a software error that needs a bug ways IPv6 impact patching.The Cisco IOS XR unit analyzing IPv6 packets and attacks that exploit the problem may cause a forced reboot of the line card processing traffic.
An attacker could exploit the vulnerability by sending an IPv6 packet is invalid, thereby extension headers, through a device line card Cisco IOS XR concerned, were consulting company. This vulnerability can be exploited repeatedly to cause a denial expanded condition.
Of course, this is only a problem if you're actually using IPv6 traffic processing vulnerable IOS XR software. It also limited the traffic that is moving the affected device: the traffic on the device on the way to somewhere else error will not trigger.
For the Cisco NCS 6000, all versions of IOS XR software except 5.3.2 are affected. For IOS XR CRS-X, all versions supporting line cards CRS-X, including 400 Gbps modular services card (MSC) and 400 Gbps and forwarding processor boards, the secure version is 5.3.0 - all other vulnerable.The versions are bug was appointed CVE-2015-0618.
0 comments:
Post a Comment