Lucene search

CiscoCISCO-SA-20140924-METADATA

HistorySep 24, 2014 - 4:00 p.m.

Cisco IOS Software Metadata Vulnerabilities

2014-09-2416:00:00

tools.cisco.com

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.012

Percentile

85.1%

JSON

Two vulnerabilities in the metadata flow feature of Cisco IOS Software could allow an unauthenticated, remote attacker to reload a vulnerable device.

The vulnerabilities are due to improper handling of transit RSVP packets that need to be processed by the metadata infrastructure. An attacker could exploit these vulnerabilities by sending malformed RSVP packets to an affected device. A successful exploit could allow the attacker to cause an extended denial of service (DoS) condition.

Cisco has released software updates that address these vulnerabilities.

Workarounds that mitigate these vulnerabilities are not available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-metadata[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-metadata”]

Note: The September 24, 2014, Cisco IOS Software Security Advisory bundled publication includes six Cisco Security Advisories. All advisories address vulnerabilities in Cisco IOS Software. Individual publication links are in Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication at the following link:
http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep14.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep14.html”]

Affected configurations

Vulners

Node

ciscoiosMatch15.2s

ciscoiosMatch15.3t

ciscoiosMatch15.2m

ciscoiosMatch15.0ex

ciscoiosMatch15.2gc

ciscoiosMatch15.1sy

ciscoiosMatch15.3s

ciscoiosMatch15.3m

ciscoiosMatch15.2sc

ciscoiosMatch15.2jaz

ciscoiosMatch15.3xb

ciscoiosMatch15.3jaa

ciscoiosMatch15.3jpi

ciscoiosMatch15.3jpj

ciscoiosMatch15.3jpr

ciscocisco_iosMatch3.7sxe

ciscocisco_iosMatch3.8sxe

ciscocisco_iosMatch3.9sxe

ciscocisco_iosMatch3.3xoxe

ciscocisco_iosMatch3.10sxe

ciscoiosMatch15.2\(2\)s

ciscoiosMatch15.2\(4\)s

ciscoiosMatch15.2\(2\)s1

ciscoiosMatch15.2\(4\)s1

ciscoiosMatch15.2\(4\)s4a

ciscoiosMatch15.3\(1\)t

ciscoiosMatch15.3\(2\)t

ciscoiosMatch15.3\(1\)t1

ciscoiosMatch15.3\(1\)t2

ciscoiosMatch15.3\(1\)t3

ciscoiosMatch15.3\(1\)t4

ciscoiosMatch15.3\(2\)t1

ciscoiosMatch15.3\(2\)t2

ciscoiosMatch15.3\(2\)t3

ciscoiosMatch15.2\(4\)m

ciscoiosMatch15.2\(4\)m1

ciscoiosMatch15.2\(4\)m2

ciscoiosMatch15.2\(4\)m4

ciscoiosMatch15.2\(4\)m3

ciscoiosMatch15.2\(4\)m5

ciscoiosMatch15.2\(4\)m6

ciscoiosMatch15.2\(4\)m6b

ciscoiosMatch15.2\(4\)m6a

ciscoiosMatch15.0\(2\)ex2

ciscoiosMatch15.0\(2\)ex8

ciscoiosMatch15.2\(1\)gc

ciscoiosMatch15.2\(1\)gc1

ciscoiosMatch15.2\(1\)gc2

ciscoiosMatch15.2\(2\)gc

ciscoiosMatch15.2\(3\)gc

ciscoiosMatch15.2\(3\)gc1

ciscoiosMatch15.2\(4\)gc

ciscoiosMatch15.2\(4\)gc1

ciscoiosMatch15.2\(4\)gc2

ciscoiosMatch15.1\(1\)sy

ciscoiosMatch15.1\(1\)sy1

ciscoiosMatch15.1\(2\)sy

ciscoiosMatch15.1\(2\)sy1

ciscoiosMatch15.1\(2\)sy2

ciscoiosMatch15.1\(1\)sy2

ciscoiosMatch15.1\(1\)sy3

ciscoiosMatch15.1\(2\)sy3

ciscoiosMatch15.3\(1\)s

ciscoiosMatch15.3\(2\)s

ciscoiosMatch15.3\(3\)s

ciscoiosMatch15.3\(1\)s2

ciscoiosMatch15.3\(2\)s2

ciscoiosMatch15.3\(2\)s1

ciscoiosMatch15.3\(3\)s1

ciscoiosMatch15.3\(3\)s2

ciscoiosMatch15.3\(3\)s3

ciscoiosMatch15.3\(3\)m

ciscoiosMatch15.3\(3\)m1

ciscoiosMatch15.3\(3\)m2

ciscoiosMatch15.3\(3\)m3

ciscoiosMatch15.2\(2\)sc3

ciscoiosMatch15.2\(4\)jaz1

ciscoiosMatch15.3\(3\)xb12

ciscoiosMatch15.3\(3\)jaa1

ciscoiosMatch15.3\(3\)jpi

ciscoiosMatch15.3\(3\)jpj

ciscoiosMatch15.3\(3\)jpr1

ciscocisco_iosMatch3.7.0sxe

ciscocisco_iosMatch3.7.1sxe

ciscocisco_iosMatch3.7.2sxe

ciscocisco_iosMatch3.7.3sxe

ciscocisco_iosMatch3.7.4sxe

ciscocisco_iosMatch3.7.5sxe

ciscocisco_iosMatch3.8.0sxe

ciscocisco_iosMatch3.8.1sxe

ciscocisco_iosMatch3.8.2sxe

ciscocisco_iosMatch3.9.1sxe

ciscocisco_iosMatch3.9.0sxe

ciscocisco_iosMatch3.9.2sxe

ciscocisco_iosMatch3.3.0xoxe

ciscocisco_iosMatch3.10.0sxe

ciscocisco_iosMatch3.10.1sxe

ciscocisco_iosMatch3.10.2sxe

ciscocisco_iosMatch3.10.0asxe

ciscocisco_iosMatch3.10.3sxe

VendorProductVersionCPE
ciscoios15.2scpe:2.3:o:cisco:ios:15.2s:*:*:*:*:*:*:*
ciscoios15.3tcpe:2.3:o:cisco:ios:15.3t:*:*:*:*:*:*:*
ciscoios15.2mcpe:2.3:o:cisco:ios:15.2m:*:*:*:*:*:*:*
ciscoios15.0excpe:2.3:o:cisco:ios:15.0ex:*:*:*:*:*:*:*
ciscoios15.2gccpe:2.3:o:cisco:ios:15.2gc:*:*:*:*:*:*:*
ciscoios15.1sycpe:2.3:o:cisco:ios:15.1sy:*:*:*:*:*:*:*
ciscoios15.3scpe:2.3:o:cisco:ios:15.3s:*:*:*:*:*:*:*
ciscoios15.3mcpe:2.3:o:cisco:ios:15.3m:*:*:*:*:*:*:*
ciscoios15.2sccpe:2.3:o:cisco:ios:15.2sc:*:*:*:*:*:*:*
ciscoios15.2jazcpe:2.3:o:cisco:ios:15.2jaz:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	15.2s	cpe:2.3:o:cisco:ios:15.2s:::::::*
cisco	ios	15.3t	cpe:2.3:o:cisco:ios:15.3t:::::::*
cisco	ios	15.2m	cpe:2.3:o:cisco:ios:15.2m:::::::*
cisco	ios	15.0ex	cpe:2.3:o:cisco:ios:15.0ex:::::::*
cisco	ios	15.2gc	cpe:2.3:o:cisco:ios:15.2gc:::::::*
cisco	ios	15.1sy	cpe:2.3:o:cisco:ios:15.1sy:::::::*
cisco	ios	15.3s	cpe:2.3:o:cisco:ios:15.3s:::::::*
cisco	ios	15.3m	cpe:2.3:o:cisco:ios:15.3m:::::::*
cisco	ios	15.2sc	cpe:2.3:o:cisco:ios:15.2sc:::::::*
cisco	ios	15.2jaz	cpe:2.3:o:cisco:ios:15.2jaz:::::::*