Cisco IOS XE Denial of Service Vulnerability (CSCug41049 / CSCue61890)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote device is affected by a denial of service vulnerability.

Description :

The remote Cisco device potentially contains an issue which is
potentially affected by errors related to handling Virtual Switching
Systems (VSS) or Bidirectional Forwarding Detection (BFD) traffic that
could allow denial of service attacks.

Note this issue only affects Cisco Catalyst 4000 Series switches.

See also :

http://www.nessus.org/u?854088ee
http://tools.cisco.com/security/center/viewAlert.x?alertId=33558

Solution :

Upgrade to a version referenced in Cisco Bug IDs CSCug41049 and
CSCue61890.

Risk factor :

Medium / CVSS Base Score : 5.7
(CVSS2#AV:A/AC:M/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 5.0
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 73829 ()

Bugtraq ID: 66515

CVE ID: CVE-2014-2131