ID
VAR-201205-0019
CVE
CVE-2011-4007
TITLE
Cisco IOS and IOS XE Service disruption in ( Device crash ) Vulnerabilities
Trust: 0.8
sources:
JVNDB: JVNDB-2012-002220
DESCRIPTION
Cisco IOS 15.0 and 15.1 and IOS XE 3.x do not properly handle the "set mpls experimental imposition" command, which allows remote attackers to cause a denial of service (device crash) via network traffic that triggers (1) fragmentation or (2) reassembly, aka Bug ID CSCtr56576. Cisco IOS is a popular Internet operating system. The remote attacker causes the system to refuse service by fragmentation or reassembly of MPLS packets. IOS XE is prone to a denial-of-service vulnerability
Trust: 2.52
sources:
NVD: CVE-2011-4007 //
JVNDB: JVNDB-2012-002220 //
CNVD: CNVD-2012-2409 //
BID: 78436 //
VULHUB: VHN-51952
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2012-2409
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.1 | Trust: 2.7 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.0 | Trust: 2.7 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.1.0sg | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.2.2s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.1.3s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.3.0s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.2.1s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.1.0s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.1.1s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.1.2s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.1.4s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.2.0s | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.x | Trust: 1.4 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.3.1s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.1.1sg | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.3.2s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.4.1s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.4.0s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.2.0sg | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.5.0s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.2.1sg | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.3.3s | Trust: 1.0 |
| vendor: | cisco | model: | ios xe 3.4.1s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.4.0s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.3.3s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.3.1s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.3.0s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.2.2s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.2.1sg | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.2.1s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.2.0s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.1.4s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.1.3s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.1.2s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.1.1sg | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.1.1s | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.1.0sg | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.1.0s | scope: | - | version: | - | Trust: 0.3 |
sources:
CNVD: CNVD-2012-2409 //
BID: 78436 //
JVNDB: JVNDB-2012-002220 //
CNNVD: CNNVD-201205-041 //
NVD: CVE-2011-4007
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
VULHUB: VHN-51952 //
JVNDB: JVNDB-2012-002220 //
CNNVD: CNNVD-201205-041 //
NVD: CVE-2011-4007
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.9 |
sources:
VULHUB: VHN-51952 //
JVNDB: JVNDB-2012-002220 //
NVD: CVE-2011-4007
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201205-041
TYPE
input validation
Trust: 0.6
sources:
CNNVD: CNNVD-201205-041
CONFIGURATIONS
sources:
JVNDB: JVNDB-2012-002220
PATCH
| title: | Release 3.3S Caveats | url: | http://www.cisco.com/en/US/docs/ios/ios_xe/3/release/notes/asr1k_caveats_33s.html | Trust: 0.8 |
| title: | Cisco IOS 'set mpls experimental imposition' command denial of service vulnerability patch | url: | https://www.cnvd.org.cn/patchInfo/show/16783 | Trust: 0.6 |
sources:
CNVD: CNVD-2012-2409 //
JVNDB: JVNDB-2012-002220
EXTERNAL IDS
| db: | NVD | id: | CVE-2011-4007 | Trust: 3.4 |
| db: | SECTRACK | id: | 1027005 | Trust: 1.4 |
| db: | JVNDB | id: | JVNDB-2012-002220 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201205-041 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2012-2409 | Trust: 0.6 |
| db: | BID | id: | 78436 | Trust: 0.4 |
| db: | VULHUB | id: | VHN-51952 | Trust: 0.1 |
sources:
CNVD: CNVD-2012-2409 //
VULHUB: VHN-51952 //
BID: 78436 //
JVNDB: JVNDB-2012-002220 //
CNNVD: CNNVD-201205-041 //
NVD: CVE-2011-4007
REFERENCES
| url: | http://www.cisco.com/en/us/docs/ios/ios_xe/3/release/notes/asr1k_caveats_33s.html | Trust: 2.6 |
| url: | http://www.securitytracker.com/id?1027005 | Trust: 1.4 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-4007 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-4007 | Trust: 0.8 |
sources:
CNVD: CNVD-2012-2409 //
VULHUB: VHN-51952 //
BID: 78436 //
JVNDB: JVNDB-2012-002220 //
CNNVD: CNNVD-201205-041 //
NVD: CVE-2011-4007
CREDITS
Unknown
Trust: 0.3
sources:
BID: 78436
SOURCES
| db: | CNVD | id: | CNVD-2012-2409 |
| db: | VULHUB | id: | VHN-51952 |
| db: | BID | id: | 78436 |
| db: | JVNDB | id: | JVNDB-2012-002220 |
| db: | CNNVD | id: | CNNVD-201205-041 |
| db: | NVD | id: | CVE-2011-4007 |
LAST UPDATE DATE
2024-11-23T22:08:49.847000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2012-2409 | date: | 2012-05-09T00:00:00 |
| db: | VULHUB | id: | VHN-51952 | date: | 2012-10-30T00:00:00 |
| db: | BID | id: | 78436 | date: | 2012-05-02T00:00:00 |
| db: | JVNDB | id: | JVNDB-2012-002220 | date: | 2012-05-08T00:00:00 |
| db: | CNNVD | id: | CNNVD-201205-041 | date: | 2012-05-03T00:00:00 |
| db: | NVD | id: | CVE-2011-4007 | date: | 2024-11-21T01:31:42.050 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2012-2409 | date: | 2012-05-09T00:00:00 |
| db: | VULHUB | id: | VHN-51952 | date: | 2012-05-02T00:00:00 |
| db: | BID | id: | 78436 | date: | 2012-05-02T00:00:00 |
| db: | JVNDB | id: | JVNDB-2012-002220 | date: | 2012-05-08T00:00:00 |
| db: | CNNVD | id: | CNNVD-201205-041 | date: | 2012-05-03T00:00:00 |
| db: | NVD | id: | CVE-2011-4007 | date: | 2012-05-02T10:09:21.660 |