News
Vigil@nce: Cisco IOS XR, BGP vulnerability
August 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An attacker can send a BGP prefix with transitive attribute to generate a denial of service. Severity: 1/4 Creation date: 30/08/2010
DESCRIPTION OF THE VULNERABILITY
The Border Gateway Protocol (BGP) protocol is an route exchange protocol (called prefix). The BGP prefixes possess attributes.
When a prefix with a valid but not recognized attribute (transitive attribute) is received, the router needs to propagate this attribute has is. However, in this case, Cisco IOS XR corrupts the attribute before propagation. Peers connected to the router therefore close the BGP session.
An attacker can therefore send a BGP prefix with transitive attribute to generate a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
GOLD SPONSOR
