PT-2006-1412 · Cisco · Cisco Ios

Published

2006-01-21

Updated

2017-07-20

CVE-2006-0340

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.4

Description The issue affects Cisco IOS when SGBP is enabled, allowing remote attackers on the local network to cause a denial of service, resulting in device hang and network traffic loss, via a crafted UDP packet to port 9900, which is the "API Endpoint: port 9900".

Recommendations For Cisco IOS versions 12.0 through 12.4, consider disabling SGBP support as a temporary workaround until a patch is available. Restrict access to port 9900 to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2006-0340

Affected Products

Cisco Ios

PT-2006-1412 · Cisco · Cisco Ios

CVE-2006-0340

Weakness Enumeration

Related Identifiers

Affected Products

References · 9