CVE-2007-4286

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.4

Description A buffer overflow in the Next Hop Resolution Protocol (NHRP) functionality allows remote attackers to cause a denial of service (restart) and execute arbitrary code via a crafted NHRP packet. NHRP is a primary component of the Dynamic Multipoint Virtual Private Network (DMVPN) feature and can operate in three ways: at the link layer (Layer 2), over Generic Routing Encapsulation (GRE) and multipoint GRE (mGRE) tunnels, and directly on IP (IP protocol number 54). This issue affects all three methods of operation.

Recommendations For Cisco IOS versions 12.0 through 12.4, update to a version that includes the fix for the NHRP vulnerability, as indicated by Cisco bug IDs CSCin95836 for non-12.2 mainline releases and CSCsi23231 for 12.2 mainline releases. As a temporary workaround, consider disabling the NHRP feature until a patch is available. Restrict access to the NHRP functionality to minimize the risk of exploitation.