CVE-2006-4650

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.2

Description The issue occurs when GRE IP tunneling is used without the RFC2784 compliance fixes, leading to a failure in verifying the offset field of a GRE packet during decapsulation. This results in an integer overflow that references data from incorrect memory locations, allowing remote attackers to inject crafted packets into the routing queue. This could potentially bypass intended router ACLs.

Recommendations For Cisco IOS versions 12.0 through 12.2, apply the RFC2784 compliance fixes to ensure proper verification of the offset field in GRE packets.