CVE-2014-3335

Cisco IOS XR < 4.3.2 - Denial of Service via NetFlow Sampling of Multicast Packets

Title source: llm
STIX 2.1

Description

Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote attackers to cause a denial of service (chip and card hangs) via a crafted packet, aka Bug ID CSCup77750.

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/95443
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/69383
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/60222
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030757

Scores

EPSS 0.0111
EPSS Percentile 62.0%

Details

CWE
CWE-20
Status published
Products (10)
cisco/asr_9000_rsp440_router
cisco/asr_9001
cisco/asr_9006
cisco/asr_9010
cisco/asr_9904
cisco/asr_9912
cisco/asr_9922
cisco/ios_xr 4.3.0
cisco/ios_xr 4.3.1
cisco/ios_xr < 4.3.2
Published Aug 26, 2014
Tracked Since Feb 18, 2026