CVE-2014-2144

MEDIUM

Description

Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6 transit outage) via crafted redirect messages, aka Bug ID CSCum14266.

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2144

Details

Source: MITRE

Published: 2014-04-05

Updated: 2014-04-07

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 6.1

Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 6.5

Severity: MEDIUM