CVE-2013-5503

Name of the Vulnerable Software and Affected Versions Cisco IOS XR Software version 4.3.1

Description The issue is related to the UDP process in Cisco IOS XR, which does not free packet memory upon detecting full packet queues. This allows remote attackers to cause a denial of service (memory consumption) via UDP packets to listening ports. Successful exploitation could render critical services on the affected device unable to allocate packets, resulting in a denial of service (DoS) condition.

Recommendations For Cisco IOS XR Software version 4.3.1, update to a newer version that addresses this issue, as software updates have been released by Cisco. Alternatively, consider applying available workarounds that mitigate this vulnerability.