Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate parameters in ITR control messages, which allows remote attackers to cause a denial of service (CEF outage and packet drops) via malformed messages, aka Bug ID CSCun73782.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco IOS和IOS-XE 输入验证漏洞
Vulnerability Description
Cisco IOS和IOS-XE都是美国思科(Cisco)公司为其网络设备开发的操作系统。 Cisco IOS 15.3(3)S及之前的版本和IOS XE中的Locator/ID Separation Protocol (LISP)实现过程中存在安全漏洞,该漏洞源于程序没有正确验证ITR控制消息中的参数。远程攻击者可通过发送畸形的消息利用该漏洞造成拒绝服务(CEF中断和丢包)。
CVSS Information
N/A
Vulnerability Type
N/A