Cisco IOS XR MPLS packet denial of service

cisco-iosxr-mpls-dos (25881) The risk level is classified as MediumMedium Risk

Description:

Cisco CRS-1 and Cisco 12000 series routers running Cisco IOS XR and configured for Multi Protocol Label Switching (MPLS) are vulnerable to a denial of service attack, caused by improper handling of MPLS packets. A remote attacker could exploit this vulnerability by sending malformed MPLS packets to an affected device to cause the Modular Services Card (MSC) on the CRS-1 router or the line cards on a 12000 series router to reload, resulting in a denial of service.


Consequences:

Denial of Service

Remedy:

Refer to Cisco Security Advisory cisco-sa-20060419-xr for upgrade information. See References.

References:

  • cisco-sa-20060419-xr: Cisco Security Advisory: Cisco IOS XR MPLS Vulnerabilities.
  • BID-17607: Cisco IOS XR MPLS Denial of Service Vulnerability
  • CVE-2006-1927: Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 or Cisco 12000 series routers, allows remote attackers to cause a denial of service (Line card crash) via certain MPLS packets, as identified by Cisco bug ID CSCsc77475.
  • CVE-2006-1928: Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 routers, allows remote attackers to cause a denial of service (Modular Services Cards (MSC) crash or MPLS packet handling problems) via certain MPLS packets, as identified by Cisco bug IDs (1) CSCsd15970 and (2) CSCsd55531.
  • OSVDB ID: 24811: Cisco IOS XR Crafted MPLS Packet Remote DoS
  • SA19740: Cisco IOS XR MPLS Denial of Service Vulnerabilities
  • SECTRACK ID: 1015964: Cisco IOS XR MPLS Bugs Let Remote Users Deny Service
  • VUPEN/ADV-2006-1433: Cisco IOS XR Multi Protocol Label Switching Denial of Service Vulnerabilities

Platforms Affected:

  • Cisco IOS XR 3.0.1
  • Cisco IOS XR 3.1.0
  • Cisco IOS XR 3.2
  • Cisco IOS XR 3.2.1
  • Cisco IOS XR 3.2.2
  • Cisco IOS XR 3.2.4
  • Cisco IOS XR 3.2.50
  • Cisco IOS XR for CRS-1 3.2.3
  • Cisco IOS XR for PRP 3.2.3
  • Microsoft Windows CE 3.0.11171

Reported:

Apr 19, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page