The ethernet-lldp component in Cisco IOS 12.2 before 12.2(33)SXJ1 does not properly support a large number of LLDP Management Address (MA) TLVs, which allows remote attackers to cause a denial of service (device crash) via crafted LLDPDUs, aka Bug ID CSCtj22354.
References
Link | Resource |
---|---|
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/release/notes/caveats_SXJ.html | Release Notes Vendor Advisory |
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/release/notes/caveats_SXJ.html | Release Notes Vendor Advisory |
Configurations
History
21 Nov 2024, 01:26
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/release/notes/caveats_SXJ.html - Release Notes, Vendor Advisory |
Information
Published : 2011-10-22 02:59
Updated : 2024-11-21 01:26
NVD link : CVE-2011-1640
Mitre link : CVE-2011-1640
CVE.ORG link : CVE-2011-1640
JSON object : View
Products Affected
cisco
- ios
CWE
CWE-400
Uncontrolled Resource Consumption