PT-2016-1177 · Cisco · Industrial Ethernet 2000+2

Publicado

2016-02-15

Atualizado

2016-12-06

CVE-2016-1330

CVSS v3.1

6.5

Média

Vetor

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Cisco IOS version 15.2(4)E on Industrial Ethernet 2000 devices

Description The issue is related to errors in resource management and can be exploited by sending crafted Cisco Discovery Protocol (CDP) packets, which may cause a denial of service (device reload).

Recommendations For Cisco IOS version 15.2(4)E on Industrial Ethernet 2000 devices, consider restricting or disabling the use of Cisco Discovery Protocol (CDP) until a patch is available to prevent potential denial of service attacks.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399

Identificadores relacionados

BDU:2016-00438

CVE-2016-1330

Produtos afetados

Cisco Discovery Protocol

Cisco Ios

Industrial Ethernet 2000

PT-2016-1177 · Cisco · Industrial Ethernet 2000+2

CVE-2016-1330

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5