Vigil@nce - Cisco 1000 Series Connected Grid Routers: denial of service via SNMP
April 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send a malicious SNMP packet to Cisco 1000 Series
Connected Grid Routers, in order to trigger a denial of service.
Impacted products: IOS Cisco, Cisco Router.
Severity: 2/4.
Creation date: 18/02/2016.
DESCRIPTION OF THE VULNERABILITY
The Cisco 1000 Series Connected Grid Routers product has a service
to manage received SNMP packets.
However, when the request is authenticated at SNMP level and is
about the "BRIDGE" MIB, the route mishandles it and reboots.
An attacker can therefore send a malicious SNMP packet to Cisco
1000 Series Connected Grid Routers, in order to trigger a denial
of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN