Vigil@nce - Cisco IOS: two vulnerabilities of RSVP Metadata
October 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of RSVP of Cisco IOS.
– Impacted products: IOS, Cisco Router xx00 Series
– Severity: 2/4
– Creation date: 25/09/2014
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in Cisco IOS.
An attacker can send a malicious RSVP packet, in order to trigger
a denial of service. [severity:2/4; 35622, CSCue22753,
CVE-2014-3356]
An attacker can send a malicious RSVP packet, in order to trigger
a denial of service. [severity:2/4; 35623, CSCug75942,
CVE-2014-3355]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-two-vulnerabilities-of-RSVP-Metadata-15404