CVE-2012-1311

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.0 and 15.1 Cisco IOS XE versions 3.2.xS through 3.4.xS before 3.4.2S

Description The vulnerability in the RSVP feature of Cisco IOS and IOS XE Software, when used on a device configured with VPN routing and forwarding (VRF) instances, could allow an unauthenticated, remote attacker to cause an interface wedge, leading to loss of connectivity, loss of routing protocol adjacency, and other denial of service (DoS) conditions. This issue can be exploited by sending crafted RSVP packets. The vulnerability could be exploited repeatedly to cause an extended DoS condition.

Recommendations For Cisco IOS versions 15.0 and 15.1, update to a version that addresses this vulnerability. For Cisco IOS XE versions 3.2.xS through 3.4.xS before 3.4.2S, update to version 3.4.2S or later. As a temporary workaround, consider implementing a mitigation strategy to prevent exploitation of the RSVP feature until a patch is available.