The ethernet-lldp component in Cisco IOS 12.2 before 12.2(33)SXJ1 does not properly support a large number of LLDP Management Address (MA) TLVs, which allows remote attackers to cause a denial of service (device crash) via crafted LLDPDUs, aka Bug ID CSCtj22354.
References
Link | Resource |
---|---|
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/release/notes/caveats_SXJ.html | Release Notes Vendor Advisory |
Configurations
History
No history.
Information
Published : 2011-10-22 02:59
Updated : 2024-02-28 11:41
NVD link : CVE-2011-1640
Mitre link : CVE-2011-1640
CVE.ORG link : CVE-2011-1640
JSON object : View
Products Affected
cisco
- ios
CWE
CWE-400
Uncontrolled Resource Consumption