Vigil@nce - Cisco IOS XE: adding entries via of ANI
March 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send ANI messages to Cisco IOS XE, in order to
alter the configuration.
Impacted products: Cisco Catalyst, IOS XE, Cisco Router xx00 Series
Severity: 2/4
Creation date: 06/03/2015
DESCRIPTION OF THE VULNERABILITY
The Cisco IOS XE product implements the ANI (Autonomic Networking
Infrastructure) feature to manage the automatic configuration of
IPv6 devices.
However, a network attacker can send an Autonomic Networking
message to automatically add an entry, or create an adjacency.
An attacker can therefore send ANI messages to Cisco IOS XE, in
order to alter the configuration.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-XE-adding-entries-via-of-ANI-16335