Lucene search

CiscoCISCO-SA-20130925-WEDGE

HistorySep 25, 2013 - 4:00 p.m.

Cisco IOS Software Queue Wedge Denial of Service Vulnerability

2013-09-2516:00:00

tools.cisco.com

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.002

Percentile

53.2%

JSON

A vulnerability in the T1/E1 driver queue implementation of Cisco IOS Software could allow an unauthenticated, remote attacker to cause an interface wedge condition, which could lead to loss of connectivity, loss of routing protocol adjacency, and could result in a denial of service (DoS) scenario.

The vulnerability is due to incorrect implementation of the T1/E1 driver queue. An attacker could exploit this vulnerability by sending bursty traffic through the affected interface driver. Repeated exploitation could cause a DoS condition.

Workarounds to mitigate this vulnerability are available.

Cisco has released software updates that address this vulnerability. This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-wedge [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-wedge”]
Note: The September 25, 2013, Cisco IOS Software Security Advisory bundled publication includes eight Cisco Security Advisories. All advisories address vulnerabilities in Cisco IOS Software. Each Cisco IOS Software Security Advisory lists the Cisco IOS Software releases that correct the vulnerability or vulnerabilities detailed in the advisory as well as the Cisco IOS Software releases that correct all Cisco IOS Software vulnerabilities in the September 2013 bundled publication.

Individual publication links are in “Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication” at the following link:

http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep13.html [“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep13.html”]

Affected configurations

Vulners

Node

ciscoiosMatch15.0m

ciscoiosMatch15.0xa

ciscoiosMatch15.1t

ciscoiosMatch15.1xb

ciscoiosMatch15.3t

ciscoiosMatch15.1m

ciscoiosMatch15.1gc

ciscoiosMatch15.2m

ciscoiosMatch15.2gc

ciscoiosMatch15.2e

ciscoiosMatch15.2jb

ciscoiosMatch15.2jax

ciscoiosMatch12.4jap

ciscoiosMatch15.3ja

ciscoiosMatch15.6t

ciscoiosMatch12.2i

ciscoiosMatch15.0\(1\)m1

ciscoiosMatch15.0\(1\)m5

ciscoiosMatch15.0\(1\)m4

ciscoiosMatch15.0\(1\)m3

ciscoiosMatch15.0\(1\)m2

ciscoiosMatch15.0\(1\)m6

ciscoiosMatch15.0\(1\)m

ciscoiosMatch15.0\(1\)m7

ciscoiosMatch15.0\(1\)m10

ciscoiosMatch15.0\(1\)m9

ciscoiosMatch15.0\(1\)m8

ciscoiosMatch15.0\(1\)m6a

ciscoiosMatch15.0\(1\)xa2

ciscoiosMatch15.0\(1\)xa4

ciscoiosMatch15.0\(1\)xa1

ciscoiosMatch15.0\(1\)xa3

ciscoiosMatch15.0\(1\)xa

ciscoiosMatch15.0\(1\)xa5

ciscoiosMatch15.1\(2\)t

ciscoiosMatch15.1\(1\)t4

ciscoiosMatch15.1\(3\)t2

ciscoiosMatch15.1\(1\)t1

ciscoiosMatch15.1\(2\)t0a

ciscoiosMatch15.1\(3\)t3

ciscoiosMatch15.1\(1\)t3

ciscoiosMatch15.1\(2\)t3

ciscoiosMatch15.1\(2\)t4

ciscoiosMatch15.1\(1\)t2

ciscoiosMatch15.1\(3\)t

ciscoiosMatch15.1\(2\)t2a

ciscoiosMatch15.1\(3\)t1

ciscoiosMatch15.1\(1\)t

ciscoiosMatch15.1\(2\)t2

ciscoiosMatch15.1\(2\)t1

ciscoiosMatch15.1\(2\)t5

ciscoiosMatch15.1\(3\)t4

ciscoiosMatch15.1\(1\)t5

ciscoiosMatch15.1\(1\)xb

ciscoiosMatch15.1\(1\)xb3

ciscoiosMatch15.1\(1\)xb1

ciscoiosMatch15.1\(1\)xb2

ciscoiosMatch15.1\(4\)xb4

ciscoiosMatch15.1\(4\)xb5

ciscoiosMatch15.1\(4\)xb6

ciscoiosMatch15.1\(4\)xb5a

ciscoiosMatch15.1\(4\)xb7

ciscoiosMatch15.1\(4\)xb8

ciscoiosMatch15.1\(4\)xb8a

ciscoiosMatch15.3\(1\)t

ciscoiosMatch15.3\(1\)t1

ciscoiosMatch15.1\(4\)m3

ciscoiosMatch15.1\(4\)m

ciscoiosMatch15.1\(4\)m1

ciscoiosMatch15.1\(4\)m2

ciscoiosMatch15.1\(4\)m6

ciscoiosMatch15.1\(4\)m5

ciscoiosMatch15.1\(4\)m4

ciscoiosMatch15.1\(4\)m0a

ciscoiosMatch15.1\(4\)m0b

ciscoiosMatch15.1\(4\)m3a

ciscoiosMatch15.1\(2\)gc

ciscoiosMatch15.1\(2\)gc1

ciscoiosMatch15.1\(2\)gc2

ciscoiosMatch15.1\(4\)gc

ciscoiosMatch15.1\(4\)gc1

ciscoiosMatch15.2\(4\)m

ciscoiosMatch15.2\(4\)m1

ciscoiosMatch15.2\(4\)m2

ciscoiosMatch15.2\(1\)gc

ciscoiosMatch15.2\(1\)gc1

ciscoiosMatch15.2\(1\)gc2

ciscoiosMatch15.2\(2\)gc

ciscoiosMatch15.2\(3\)gc

ciscoiosMatch15.2\(3\)gc1

ciscoiosMatch15.2\(4m\)e1

ciscoiosMatch15.2\(2\)jb1

ciscoiosMatch15.2\(2\)jb

ciscoiosMatch15.2\(2\)jax

ciscoiosMatch12.4\(25e\)jap8

ciscoiosMatch15.3\(3\)ja8

ciscoiosMatch15.6\(2\)t

ciscoiosMatch12.2\(6\)i1

VendorProductVersionCPE
ciscoios15.0mcpe:2.3:o:cisco:ios:15.0m:*:*:*:*:*:*:*
ciscoios15.0xacpe:2.3:o:cisco:ios:15.0xa:*:*:*:*:*:*:*
ciscoios15.1tcpe:2.3:o:cisco:ios:15.1t:*:*:*:*:*:*:*
ciscoios15.1xbcpe:2.3:o:cisco:ios:15.1xb:*:*:*:*:*:*:*
ciscoios15.3tcpe:2.3:o:cisco:ios:15.3t:*:*:*:*:*:*:*
ciscoios15.1mcpe:2.3:o:cisco:ios:15.1m:*:*:*:*:*:*:*
ciscoios15.1gccpe:2.3:o:cisco:ios:15.1gc:*:*:*:*:*:*:*
ciscoios15.2mcpe:2.3:o:cisco:ios:15.2m:*:*:*:*:*:*:*
ciscoios15.2gccpe:2.3:o:cisco:ios:15.2gc:*:*:*:*:*:*:*
ciscoios15.2ecpe:2.3:o:cisco:ios:15.2e:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	15.0m	cpe:2.3:o:cisco:ios:15.0m:::::::*
cisco	ios	15.0xa	cpe:2.3:o:cisco:ios:15.0xa:::::::*
cisco	ios	15.1t	cpe:2.3:o:cisco:ios:15.1t:::::::*
cisco	ios	15.1xb	cpe:2.3:o:cisco:ios:15.1xb:::::::*
cisco	ios	15.3t	cpe:2.3:o:cisco:ios:15.3t:::::::*
cisco	ios	15.1m	cpe:2.3:o:cisco:ios:15.1m:::::::*
cisco	ios	15.1gc	cpe:2.3:o:cisco:ios:15.1gc:::::::*
cisco	ios	15.2m	cpe:2.3:o:cisco:ios:15.2m:::::::*
cisco	ios	15.2gc	cpe:2.3:o:cisco:ios:15.2gc:::::::*
cisco	ios	15.2e	cpe:2.3:o:cisco:ios:15.2e:::::::*