CVE-2011-1640

Name of the Vulnerable Software and Affected Versions Cisco IOS versions prior to 12.2(33)SXJ1

Description The issue is related to the ethernet-lldp component, which does not properly handle a large number of LLDP Management Address (MA) TLVs. This allows remote attackers to cause a denial of service, resulting in a device crash, by sending crafted LLDPDUs.

Recommendations For versions prior to 12.2(33)SXJ1, update to version 12.2(33)SXJ1 or later to resolve the issue. As a temporary workaround, consider restricting LLDP traffic to minimize the risk of exploitation.