Overview
Cisco IOS fails to properly handle Next Hop Resolution Protocol packets, which could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service.
Description
Cisco IOS is an operating system that is used on Cisco network devices. Cisco IOS supports a feature called Next Hop Resolution Protocol (NHRP). NHRP is a component of the Dynamic Multipoint Virtual Private Network (DMVPN) feature. NHRP is not enabled by default in Cisco IOS. Cisco IOS fails to properly handle NHRP packets. According to the Cisco Security Advisory, NHRP can operate in three ways: at the link layer (Layer 2), over Generic Routing Encapsulation (GRE) and multipoint GRE (mGRE) tunnels and directly on IP (IP protocol number 54). This vulnerability affects all three methods of operation. |
Impact
A remote, unauthenticated attacker may be able to execute arbitrary code or cause a denial of service on an affected device. |
Solution
Apply an update |
|
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Thanks to Cisco for reporting this vulnerability, who in turn credit Martin Kluge.
This document was written by Will Dormann.
Other Information
| CVE IDs: | None |
| Severity Metric: | 17.85 |
| Date Public: | 2007-08-08 |
| Date First Published: | 2007-08-09 |
| Date Last Updated: | 2007-08-10 12:30 UTC |
| Document Revision: | 4 |