SB2018042405 - Denial of service in Cisco ASR 5000 Series

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018042405

SB2018042405 - Denial of service in Cisco ASR 5000 Series

Published: April 24, 2018 Updated: April 24, 2018

Security Bulletin ID SB2018042405
Severity
Medium
Patch available
YES
Number of vulnerabilities 3
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Medium 33% Low 67%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.


1) Resource management errors (CVE-ID: CVE-2018-0273)

The vulnerability allows a remote unauthenticated attacker to cause DoS condition on the target system.

The weakness exists due to improper processing of corrupted Internet Key Exchange Version 2 (IKEv2) messages. A remote attacker can send specially crafted IKEv2 messages, trigger the ipsecmgr service to reload, all IPsec VPN tunnels to be terminated and prevent new tunnels from being established and cause the service to crash.

2) Improper input validation (CVE-ID: CVE-2018-0239)

The vulnerability allows a remote unauthenticated attacker to cause DoS condition on the target system.

The weakness exists in the egress packet processing functionality due to the failure to properly check that the length of a packet to transmit does not exceed the maximum supported length of the network interface card (NIC). A remote attacker can send a specially crafted IP packet or a series of specially crafted IP fragments through an interface, cause the network interface to cease forwarding packets by either IPv4 or IPv6 network traffic.

3) Improper input validation (CVE-ID: CVE-2018-0256)

The vulnerability allow a remote unauthenticated attacker to cause DoS condition on the target system.

The weakness exists in the peer-to-peer message processing functionality due to incorrect validation of peer-to-peer packet headers. A remote attacker can send a specially crafted peer-to-peer packet, trigger the SESSMGR process to restart unexpectedly, which can briefly impact traffic while the SESSMGR process restarts, and cause the service to crash.

Remediation

Install update from vendor's website.

References