SB2019011010 - Multiple vulnerabilities in Cisco IOS and IOS XE

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Improper input validation (CVE-ID: CVE-2018-0282)

The vulnerability allows a remote attacker to cause DoS condition.

The vulnerability exists in the TCP socket code due to a state condition between the socket state and the transmission control block (TCB) state. A remote attacker can send specific HTTP requests at a sustained rate to a reachable IP address of the affected software and cause the affected device to reload, resulting in a denial of service (DoS) condition on an affected device.

2) Security restrictions bypass (CVE-ID: CVE-2018-0484)

The vulnerability allows a remote attacker to bypass security restrictions on the target system.

The vulnerability exists in the access control logic of the Secure Shell (SSH) server due to a missing check in the SSH server. A remote unauthenticated attacker can open an SSH connection to an affected Cisco IOS or IOS XE device with a source address belonging to a VRF instance and forward the instance despite the absence of the vrf-also keyword in the access-class configuration.

Remediation

Install update from vendor's website.

References

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-tcp
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-ios-ssh-vrf