CVE-2008-1152

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.4

Description The issue allows remote attackers to cause a denial of service, resulting in device restart or memory consumption, via crafted UDP port 2067 or IP protocol 91 packets. This is due to vulnerabilities in the Data-link Switching (DLSw) feature when processing specially crafted UDP or IP Protocol 91 packets.

Recommendations For Cisco IOS versions 12.0 through 12.4, update to a version that includes the software updates released by Cisco to address these vulnerabilities. As a temporary workaround, consider restricting access to UDP port 2067 and IP protocol 91 packets to minimize the risk of exploitation.