CVE-2011-4007

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.0 through 15.1 Cisco IOS XE versions 3.x

Description The issue arises from improper handling of the set mpls experimental imposition command, allowing remote attackers to cause a denial of service, resulting in a device crash. This can be triggered by network traffic that leads to either fragmentation or reassembly.

Recommendations For Cisco IOS versions 15.0 through 15.1, consider disabling the set mpls experimental imposition command as a temporary workaround until a patch is available. For Cisco IOS XE versions 3.x, restrict access to the affected command to minimize the risk of exploitation.