CVE-2013-5472

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.4 Cisco IOS versions 15.0 through 15.1 Cisco IOS XE versions 2.1 through 3.3

Description The NTP implementation in Cisco IOS does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer relationship. An attacker could exploit this vulnerability by sending multicast NTP packets to an affected device, resulting in a sustained DoS condition.

Recommendations For Cisco IOS versions 12.0 through 12.4, update to a fixed software version. For Cisco IOS versions 15.0 through 15.1, update to a fixed software version. For Cisco IOS XE versions 2.1 through 3.3, update to a fixed software version. As a temporary workaround, consider restricting access to the MSDP peer relationship to minimize the risk of exploitation.