Vigil@nce - Cisco IOS: denial of service via MACE/CEF
February 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send numerous packets to Cisco IOS with CEF and
MACE, in order to trigger a denial of service.
– Impacted products: IOS, Cisco Router xx00 Series
– Severity: 2/4
– Creation date: 11/02/2015
DESCRIPTION OF THE VULNERABILITY
The CEF (Cisco Express Forwarding) feature optimizes transfers.
The MACE (Measurement, Aggregation, and Correlation Engine)
feature can be enabled on Cisco IOS.
However, when Cisco IOS with MACE manages several packets, a
synchronization error between the Process Switching and the CEF
Switching leads to a fatal error.
An attacker can therefore send numerous packets to Cisco IOS with
CEF and MACE, in order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-denial-of-service-via-MACE-CEF-16171