Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG) devices does not properly implement the parse error drop feature, which allows remote attackers to bypass intended access restrictions via a crafted series of packets, aka Bug ID CSCug90143.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ios | Cisco | * | 12.4(24)mdb14 (including) |
| Ios | Cisco | 12.4(24)md (including) | 12.4(24)md (including) |
| Ios | Cisco | 12.4(24)md1 (including) | 12.4(24)md1 (including) |
| Ios | Cisco | 12.4(24)md2 (including) | 12.4(24)md2 (including) |
| Ios | Cisco | 12.4(24)md3 (including) | 12.4(24)md3 (including) |
| Ios | Cisco | 12.4(24)md4 (including) | 12.4(24)md4 (including) |
| Ios | Cisco | 12.4(24)md5 (including) | 12.4(24)md5 (including) |
| Ios | Cisco | 12.4(24)md5a (including) | 12.4(24)md5a (including) |
| Ios | Cisco | 12.4(24)md6 (including) | 12.4(24)md6 (including) |
| Ios | Cisco | 12.4(24)md7 (including) | 12.4(24)md7 (including) |
| Ios | Cisco | 12.4(24)md8 (including) | 12.4(24)md8 (including) |
| Ios | Cisco | 12.4(24)md9 (including) | 12.4(24)md9 (including) |
| Ios | Cisco | 12.4(24)mda6 (including) | 12.4(24)mda6 (including) |
| Ios | Cisco | 12.4(24)mda7 (including) | 12.4(24)mda7 (including) |
| Ios | Cisco | 12.4(24)mda8 (including) | 12.4(24)mda8 (including) |
| Ios | Cisco | 12.4(24)mda9 (including) | 12.4(24)mda9 (including) |
| Ios | Cisco | 12.4(24)mda10 (including) | 12.4(24)mda10 (including) |
| Ios | Cisco | 12.4(24)mda11 (including) | 12.4(24)mda11 (including) |
| Ios | Cisco | 12.4(24)mda12 (including) | 12.4(24)mda12 (including) |
| Ios | Cisco | 12.4(24)mda13 (including) | 12.4(24)mda13 (including) |
| Ios | Cisco | 12.4(24)mdb10 (including) | 12.4(24)mdb10 (including) |
| Ios | Cisco | 12.4(24)mdb11 (including) | 12.4(24)mdb11 (including) |
| Ios | Cisco | 12.4(24)mdb12 (including) | 12.4(24)mdb12 (including) |
| Ios | Cisco | 12.4(24)mdb13 (including) | 12.4(24)mdb13 (including) |
| Ios | Cisco | 12.4mda12 (including) | 12.4mda12 (including) |