Fuji16.8.1

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

CWE-476

nessus

NVD

Published: 2019-09-25

Updated: 2019-10-09

Summary

A vulnerability in the Ident protocol handler of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability exists because the affected software incorrectly handles memory structures, leading to a NULL pointer dereference. An attacker could exploit this vulnerability by opening a TCP connection to specific ports and sending traffic over that connection. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS XE Fuji-16.7.1 Cisco IOS XE Fuji-16.8.1	2
Hardware	Cisco Cisco 1100 - Cisco 4221 - Cisco 4321 - Cisco 4351 - Cisco 4431 - Cisco 4451 X - Cisco ASR 1000 - Cisco ASR 1001 HX - Cisco ASR 1001 X - Cisco ASR 1002 HX - Cisco ASR 1002 X - Cisco ASR 900 - Cisco ASR 920 10Sz PD - Cisco ASR 920 12Cz A - Cisco ASR 920 12Cz D - Cisco ASR 920 12Sz IM - Cisco ASR 920 24Sz IM - Cisco ASR 920 24Sz M - Cisco ASR 920 24Tz M - Cisco ASR 920 4SZ A - Cisco ASR 920 4SZ D - Cisco Cloud Services Router 1000V - Cisco NCS 4201 - Cisco NCS 4202 - Cisco NCS 4206 - Cisco NCS 4216 - Cisco Network Convergence System 520 -	27

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

Nessus

NASL family	CISCO
NASL id	CISCO-SA-20190925-IOS-XE-IDENTD-DOS.NASL
description	According to its self-reported version, Cisco IOS XE Software is affected by a denial of service (DoS) vulnerability exists in Ident protocol handler of Cisco IOS and IOS XE Software due to incorrectly handling memory structures, leading to a NULL pointer dereference. An unauthenticated, remote attacker can exploit this issue, via opening a TCP connection to specific ports and sending traffic over that connection, to cause the affected device to reload, resulting in a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information
last seen	2020-06-01
modified	2020-06-02
plugin id	130022
published	2019-10-18
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/130022
title	Cisco IOS XR gRPC Software Denial of Service Vulnerability

NASL family	CISCO
NASL id	CISCO-SA-20190925-IOS-IDENTD-DOS.NASL
description	According to its self-reported version, Cisco IOS Software is affected by a denial of service (DoS) vulnerability exists in Ident protocol handler of Cisco IOS and IOS XE Software due to incorrectly handling memory structures, leading to a NULL pointer dereference. An unauthenticated, remote attacker can exploit this issue, via opening a TCP connection to specific ports and sending traffic over that connection, to cause the affected device to reload, resulting in a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information
last seen	2020-06-01
modified	2020-06-02
plugin id	130021
published	2019-10-18
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/130021
title	Cisco IOS XR gRPC Software Denial of Service Vulnerability

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-identd-dos