CVE-2011-0946

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.1 through 12.4 Cisco IOS versions 15.0 through 15.1 Cisco IOS XE version 3.1.xSG

Description The NAT implementation in the software allows remote attackers to cause a denial of service, resulting in a device reload or hang, via malformed NetMeeting Directory LDAP traffic. The issue can be triggered by sending specially crafted network requests, exploiting vulnerabilities in the NAT implementation of protocols such as NetMeeting Directory, Session Initiation Protocol, and H.323 protocol.

Recommendations For Cisco IOS versions 12.1 through 12.4, update to a version that fixes the Bug ID CSCtd10712 issue. For Cisco IOS versions 15.0 through 15.1, update to a version that fixes the Bug ID CSCtd10712 issue. For Cisco IOS XE version 3.1.xSG, update to a version that fixes the Bug ID CSCtd10712 issue. As a temporary workaround, consider restricting access to the vulnerable NAT implementation until a patch is available.