5.4

CVE-2013-6981

Cisco IOS XE 3.7S(.1) and earlier allows remote attackers to cause a denial of service (Packet Processor crash) via fragmented MPLS IP packets, aka Bug ID CSCul00709.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoIos Xe Version <= 3.7s\(.1\)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.03% 0.857
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.4 4.9 6.9
AV:N/AC:H/Au:N/C:N/I:N/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/101423
http://secunia.com/advisories/56206
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6981
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=32281
Vendor Advisory
http://www.securityfocus.com/bid/64514
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1029538
Third Party Advisory
VDB Entry