CVE-2010-0577

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2 through 12.4

Description The issue allows remote attackers to cause a denial of service, resulting in an infinite loop, and device reload or hang, via a TCP segment with crafted options. This can be triggered during the TCP session establishment phase when the device has a specific configuration.

Recommendations For Cisco IOS versions 12.2 through 12.4, update to a version that addresses this vulnerability, as Cisco has released software updates that fix the issue. As a temporary workaround, consider restricting the reception of TCP segments with crafted options until a patch is applied.