CVE-2013-3470

Name of the Vulnerable Software and Affected Versions Cisco IOS XR Software (affected versions not specified)

Description The issue is related to the Routing Information Protocol (RIP) process, which allows remote attackers to cause a denial of service (process crash) via a crafted version-2 RIP packet. This is due to insufficient input validations of the packet. An attacker could exploit this by sending a crafted RIP version 2 packet, potentially causing the RIP process to crash on the affected device. The vulnerability can be exploited by an unauthenticated, remote attacker, but may require access to trusted, internal networks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.