CVE-2005-0196

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.3YL

Description The issue allows remote attackers to cause a denial of service (device reload) via a malformed BGP packet. A Cisco device running IOS Border Gateway Protocol (BGP) is vulnerable to a Denial of Service (DoS) attack if it has either the command bgp log-neighbor-changes configured or the command snmp-server enable traps bgp. The BGP protocol is not enabled by default and must be configured to accept traffic from an explicitly defined peer. Unless the malicious traffic appears to be sourced from a configured, trusted peer, it would be difficult to inject a malformed packet.

Recommendations For Cisco IOS versions 12.0 through 12.3YL, update to a version that includes the free software made available by Cisco to address this problem. As a temporary workaround, consider disabling the bgp log-neighbor-changes command or restricting the use of the BGP protocol to minimize the risk of exploitation. Restrict access to the BGP protocol to only trusted peers to reduce the likelihood of a Denial of Service attack.