Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 routers, allows remote attackers to cause a denial of service (Modular Services Cards (MSC) crash or MPLS packet handling problems) via certain MPLS packets, as identified by Cisco bug IDs (1) CSCsd15970 and (2) CSCsd55531.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ios_xr | Cisco | 3.0.1 (including) | 3.0.1 (including) |
| Ios_xr | Cisco | 3.1.0 (including) | 3.1.0 (including) |
| Ios_xr | Cisco | 3.2 (including) | 3.2 (including) |
| Ios_xr | Cisco | 3.2.1 (including) | 3.2.1 (including) |
| Ios_xr | Cisco | 3.2.2 (including) | 3.2.2 (including) |
| Ios_xr | Cisco | 3.2.3 (including) | 3.2.3 (including) |
| Ios_xr | Cisco | 3.2.4 (including) | 3.2.4 (including) |
| Ios_xr | Cisco | 3.2.50 (including) | 3.2.50 (including) |
References
- http://secunia.com/advisories/19740
- http://securitytracker.com/id?1015964
- http://www.cisco.com/warp/public/707/cisco-sa-20060419-xr.shtml
- http://www.osvdb.org/24811
- http://www.securityfocus.com/bid/17607
- http://www.vupen.com/english/advisories/2006/1433
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25881
- http://secunia.com/advisories/19740
- http://securitytracker.com/id?1015964
- http://www.cisco.com/warp/public/707/cisco-sa-20060419-xr.shtml
- http://www.osvdb.org/24811
- http://www.securityfocus.com/bid/17607
- http://www.vupen.com/english/advisories/2006/1433
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25881