Denial of service in Brocade NetIron MLX - CVE-2016-8203
Published: October 13, 2016 / Updated: October 13, 2016
Vulnerability identifier: #VU943
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-8203
CWE-ID: CWE-20
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Brocade
Affected software:
Brocade NetIron MLX
Brocade NetIron MLX
Detailed vulnerability description
The vulnerability allows a remote unauthenticated user to cause DoS conditions on the target system.
The weakness is due to improper input validation. By sending a specially crafted IPSec control packets, attackers are able to trigger a memory corruption error and cause the target MLX Line Card to reset.
Successful exploitation of the vulnerability leads to denial of service on the vulnerable system.
The weakness is due to improper input validation. By sending a specially crafted IPSec control packets, attackers are able to trigger a memory corruption error and cause the target MLX Line Card to reset.
Successful exploitation of the vulnerability leads to denial of service on the vulnerable system.
How to mitigate CVE-2016-8203
Update to version 5.8.00ec, 5.9.00be or 6.0.00ab.