Main Vulnerability Database SB2017062304

SB2017062304 - Denial of service in Cisco Virtualized Packet Core

Published: June 23, 2017

Security Bulletin ID SB2017062304

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Denial of service (CVE-ID: CVE-2017-6678)

The vulnerability allows a remote unauthenticated attacker to cause DoS condition on the target system.

The weakness exists in the ingress UDP packet processing functionality of Cisco Virtualized Packet Core−Distributed Instance (VPC−DI) Software due to insufficient handling of user-supplied data. A remote attacker can send specially crafted UDP packets to the distributed instance (DI) network addresses of both CF instances, trigger an unhandled error condition and cause the CF instances and the entire VPC to reload.

Successful exploitation of the vulnerability results in denial of service.

Remediation

Install update from vendor's website.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-vpc