PT-2016-6939 · Cisco · Staros

Published

2016-12-14

Updated

2017-01-05

CVE-2016-6467

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions StarOS for Cisco Aggregation Services Router (ASR) 5000 Series Switch versions 20.0.0 through 21.0.M0.64702

Description A vulnerability in IPv6 packet fragment reassembly could allow an unauthenticated, remote attacker to cause an unexpected reload of the Network Processing Unit (NPU) process.

Recommendations For version 20.0.0, update to version 21.0.0.65256 or later. For version 21.0.0, update to version 21.0.0.65256 or later. For version 21.0.M0.64702, update to version 21.0.M0.64970 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2016-6467

Affected Products

Staros

PT-2016-6939 · Cisco · Staros

CVE-2016-6467

Weakness Enumeration

Related Identifiers

Affected Products

References · 5