CVE-2018-0167: CVE-2018-0167

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-0167

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device. Cisco Bug IDs: CSCuo17183, CSCvd73487.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

内存缓冲区边界内操作的限制不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cisco IOS Software、IOS XE Software和IOS XR Software Link Layer Discovery Protocol子系统缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cisco IOS Software、IOS XE Software和IOS XR Software都是美国思科（Cisco）公司为其网络设备开发的操作系统。Link Layer Discovery Protocol（LLDP）subsystem是其中的一套链路层发现协议子系统。 Cisco IOS Software、IOS XE Software和IOS XR Software中的LLDP子系统存在缓冲区溢出漏洞，该漏洞源于程序没有正确的对畸形的LLDP消息执行错误处理。攻击者可通过提交LLDP协议数据

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	Cisco IOS, IOS XE, and IOS XR	Cisco IOS, IOS XE, and IOS XR	-

II. Public POCs for CVE-2018-0167

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-0167

Please Login to view more intelligence information

https://ics-cert.us-cert.gov/advisories/ICSA-18-107-03x_refsource_MISC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-lldpx_refsource_CONFIRM
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05x_refsource_MISC
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-04x_refsource_MISC
http://www.securityfocus.com/bid/103564vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1040586vdb-entryx_refsource_SECTRACK
https://nvd.nist.gov/vuln/detail/CVE-2018-0167

IV. Related Vulnerabilities

Same product: Cisco IOS, IOS XE, and IOS XR

CVE-2018-0175
Cisco IOS Software、IOS XE Software和IOS XR Software Link Laye

Same vendor: n/a

Same weakness: CWE-119

V. Comments for CVE-2018-0167

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2018-0167

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-0167

III. Intelligence Information for CVE-2018-0167

IV. Related Vulnerabilities

V. Comments for CVE-2018-0167

Leave a comment