The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=33971 | Vendor Advisory |
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=33971 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 02:05
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183 - Vendor Advisory | |
References | () http://tools.cisco.com/security/center/viewAlert.x?alertId=33971 - Vendor Advisory |
Information
Published : 2014-04-29 10:37
Updated : 2024-11-21 02:05
NVD link : CVE-2014-2183
Mitre link : CVE-2014-2183
CVE.ORG link : CVE-2014-2183
JSON object : View
Products Affected
cisco
- asr_1006
- asr_1001
- asr_1002_fixed_router
- asr_1004
- asr_1002-x
- asr_1013
- asr_1002
- ios_xe
- asr_1023_router
CWE
CWE-20
Improper Input Validation