CVE-2011-3274

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2SRE before 12.2(33)SRE4 Cisco IOS versions 15.0 and 15.1 Cisco IOS XE versions 2.1.x through 3.3.x

Description The issue allows remote attackers to cause a denial of service (device crash) via a crafted IPv6 packet, related to an expired MPLS TTL, when an MPLS domain is configured. This is related to two vulnerabilities that cause a Cisco IOS device to reload when processing IP version 6 (IPv6) packets over a Multiprotocol Label Switching (MPLS) domain.

Recommendations For Cisco IOS versions 12.2SRE before 12.2(33)SRE4, update to version 12.2(33)SRE4 or later. For Cisco IOS versions 15.0 and 15.1, update to a version that corrects the vulnerability as listed in the Cisco IOS Software Security Advisory. For Cisco IOS XE versions 2.1.x through 3.3.x, update to a version that corrects the vulnerability as listed in the Cisco IOS Software Security Advisory. As a temporary workaround, consider implementing workarounds that mitigate these vulnerabilities as available.