Vulnerabilities > CVE-2017-6666 - Local Denial of Service vulnerability in Cisco IOS XR Software

CVSS 1.9 - LOW

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

cisco

NVD

Published: 2017-06-13

Updated: 2019-10-03

Summary

A vulnerability in the forwarding component of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could allow an authenticated, local attacker to cause the router to stop forwarding data traffic across Traffic Engineering (TE) tunnels, resulting in a denial of service (DoS) condition. More Information: CSCvd16665. Known Affected Releases: 6.2.11.BASE. Known Fixed Releases: 6.1.3 6.1.2 6.3.1.8i.BASE 6.2.11.8i.BASE 6.2.2.9i.BASE 6.1.32.11i.BASE 6.1.31.10i.BASE 6.1.4.3i.BASE.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS XR 6.0.0 Cisco IOS XR 6.0.1 Cisco IOS XR 6.0_Base Cisco IOS XR 6.1.0 Cisco IOS XR 6.1.1 Cisco IOS XR 6.1.2 Cisco IOS XR 6.1.3 Cisco IOS XR 6.2.0 Cisco IOS XR 6.2.1	9

Summary

Vulnerable Configurations

References