CVE-2014-3308

Name of the Vulnerable Software and Affected Versions Cisco IOS XR on Trident line cards in ASR 9000 devices (affected versions not specified)

Description The issue is related to a missing static punt policer for traffic destined to a device, which allows remote attackers to cause a denial of service by sending many crafted packets. This could lead to CPU consumption on the Trident line card or route processor, causing a denial of service condition for traffic in some queues. An attacker could exploit this by sending a large number of specific packets to an affected device, potentially requiring access to trusted internal networks.

Recommendations To resolve the issue, update to a version of Cisco IOS XR that includes the fix for this problem. At the moment, there is no information about a newer version that contains a fix for this vulnerability.