N/A

A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network (EVPN) for Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition, or potentially corrupt the BGP routing table, which could result in network instability. The vulnerability exists due to changes in the implementation of the BGP MPLS-Based Ethernet VPN RFC (RFC 7432) draft between IOS XE software releases. When the BGP Inclusive Multicast Ethernet Tag Route or BGP EVPN MAC/IP Advertisement Route update packet is received, it could be possible that the IP address length field is miscalculated. An attacker could exploit this vulnerability by sending a crafted BGP packet to an affected device after the BGP session was established. An exploit could allow the attacker to cause the affected device to reload or corrupt the BGP routing table; either outcome would result in a DoS. The vulnerability may be triggered when the router receives a crafted BGP message from a peer on an existing BGP session. This vulnerability affects all releases of Cisco IOS XE Software prior to software release 16.3 that support BGP EVPN configurations. If the device is not configured for EVPN, it is not vulnerable. Cisco Bug IDs: CSCui67191, CSCvg52875.

N/A

输入验证不恰当

Cisco IOS XE Software Ethernet Virtual Private Network 安全漏洞

Cisco IOS XE Software是美国思科（Cisco）公司为其网络设备开发的一套操作系统。Ethernet Virtual Private Network（EVPN）是其中的一个以太网虚拟专用网络系统。Border Gateway Protocol（BGP）是其中的一个边界网关协议。 Cisco IOS XE Software 16.3之前的版本中EVPN的BGP存在拒绝服务漏洞。远程攻击者可通过在BGP会话建立之后，向受影响的设备发送特制的数据包利用该漏洞造成拒绝服务（设备重新加载或BGP路

N/A

N/A