PT-2012-1784 · Cisco · Cisco Ios

Published

2012-05-02

Updated

2016-12-07

CVE-2011-4016

CVSS v2.0

5.4

Medium

Vector

AV:N/AC:H/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2, 15.0 through 15.2

Description The issue allows remote attackers to cause a denial of service, resulting in a device crash, via crafted network traffic when Point-to-Point Termination and Aggregation (PTA) and L2TP are used.

Recommendations For Cisco IOS version 12.2, update to a version that is not affected by this issue. For Cisco IOS versions 15.0 through 15.2, update to a version that is not affected by this issue. As a temporary workaround, consider disabling the use of PTA and L2TP until a patch is available.

Fix

RCE

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-284

Related Identifiers

CVE-2011-4016

Affected Products

Cisco Ios

PT-2012-1784 · Cisco · Cisco Ios

CVE-2011-4016

Weakness Enumeration

Related Identifiers

Affected Products

References · 3