CVE-2014-3293

Name of the Vulnerable Software and Affected Versions Cisco IOS version 15.4(3)S0b on ASR901 devices

Description The issue allows remote attackers to cause a denial of service, specifically BGP neighbor flapping, by sending many crafted IPv4 packets. This occurs because the software makes incorrect decisions to use the CPU for IPv4 packet processing.

Recommendations For Cisco IOS version 15.4(3)S0b on ASR901 devices, consider applying configuration changes to limit the impact of crafted IPv4 packets on CPU usage until a fix is available. Restrict access to the network to minimize the risk of exploitation.