CVE-2009-2056

Name of the Vulnerable Software and Affected Versions Cisco IOS XR versions 3.8.1 and earlier

Description The issue allows remote authenticated users to cause a denial of service via vectors involving a BGP UPDATE message with many AS numbers prepended to the AS path. Specifically, the Cisco IOS XR Software contains multiple vulnerabilities in the Border Gateway Protocol (BGP) feature. These include the reset of a BGP peering session when receiving a specific invalid BGP update, the crash of the BGP process when sending a long length BGP update message, and the crash of the BGP process when constructing a BGP update with a large number of AS prepends.

Recommendations For Cisco IOS XR versions 3.8.1 and earlier, consider applying the free software maintenance upgrade (SMU) released by Cisco to address these vulnerabilities. As a temporary workaround, restrict the number of AS numbers that can be prepended to the AS path to prevent the BGP process from crashing. Additionally, avoid sending long length BGP update messages to minimize the risk of exploitation.