CVE-2014-2131

Name of the Vulnerable Software and Affected Versions Cisco IOS (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service, resulting in a device reload, by sending a series of Virtual Switching Systems (VSS) or Bidirectional Forwarding Detection (BFD) packets. This is due to how the packet driver code handles packets that belong to protocols engaging high priority queues, such as VSS or BFD. An attacker could exploit this by sending a number of BFD or VSS packets to an affected device, leading to a reload and a denial of service condition. The attacker needs access to the same broadcast or collision domain as the targeted device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.