CVE-2014-2183CVE-2014-2183

Affected configuration(s):

cpe:/h:cisco:asr_1001_router:-
cpe:/h:cisco:asr_1002-x_router:-
cpe:/h:cisco:asr_1002_fixed_router:-
cpe:/h:cisco:asr_1002_router:-
cpe:/h:cisco:asr_1004_router:-
cpe:/h:cisco:asr_1006_router:-
cpe:/h:cisco:asr_1013_router:-
cpe:/h:cisco:asr_1023_router:-
cpe:/o:cisco:ios_xe:3.10
cpe:/o:cisco:ios_xe:3.10.0s
cpe:/o:cisco:ios_xe:3.10.1s
cpe:/o:cisco:ios_xe:3.10.1s1
cpe:/o:cisco:ios_xe:3.10.2s

Date published: 2014-04-29T06:37:04.013-04:00

Date last modified: 2014-04-29T12:19:28.250-04:00

CVSS Score: 6.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183

Summary: The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.