CVE-2010-2827

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.1(2)T

Description The issue allows remote attackers to cause a denial of service, resulting in resource consumption and TCP outage, via spoofed TCP packets. This is related to embryonic TCP connections that remain in the SYN RCVD or SYN SENT state. No authentication is required to exploit this issue, and an attacker does not need to complete a three-way handshake to trigger it. The issue can be exploited using spoofed packets and may be triggered by normal network traffic.

Recommendations For Cisco IOS version 15.1(2)T, update to Cisco IOS Software Release 15.1(2)T0a to address this issue.