Vigil@nce: Cisco Catalyst 6500, IOS, denial of service
October 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use three vulnerabilities of Cisco IOS, in order
to stop the system.
– Impacted products: Cisco Catalyst, IOS
– Severity: 2/4
– Creation date: 24/09/2012
DESCRIPTION OF THE VULNERABILITY
Three vulnerabilities were announced in Cisco IOS, used on
Catalyst 6500.
When BFD (Bidirectional Forward Detection) is enabled, some
command lines such as "show mem" stop the system. [severity:2/4;
CSCte01606, CVE-2010-3049]
An attacker can send malicious SNMP packets, in order to reload
the system. [severity:2/4; CSCti25339, CVE-2010-3050]
An attacker can create numerous IPv6 neighbors, in order to
overload the processor. [severity:2/4; CSCtn78957, CVE-2012-3079]
An attacker can therefore use three vulnerabilities of Cisco IOS,
in order to stop the system.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-Catalyst-6500-IOS-denial-of-service-11968