ID

VAR-201406-0392


CVE

CVE-2014-2176


TITLE

ASR 9000 Runs on the device Cisco IOS XR Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2014-002937

DESCRIPTION

Cisco IOS XR 4.1.2 through 5.1.1 on ASR 9000 devices, when a Trident-based line card is used, allows remote attackers to cause a denial of service (NP chip and line card reload) via malformed IPv6 packets, aka Bug ID CSCun71928. Cisco IOS is the interconnected network operating system used on most Cisco system routers and network switches. Cisco IOS XR Software for ASR 9000 Series Aggregation Services Routers have security vulnerabilities in resolving malformed IPv6 packets. Cisco IOS XR is prone to a remote denial-of-service vulnerability. This issue is being tracked by Cisco Bug ID CSCun71928

Trust: 2.52

sources: NVD: CVE-2014-2176 // JVNDB: JVNDB-2014-002937 // CNVD: CNVD-2014-03705 // BID: 68005 // VULHUB: VHN-70115

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2014-03705

AFFECTED PRODUCTS

vendor:ciscomodel:ios xrscope:eqversion:4.3.1

Trust: 1.9

vendor:ciscomodel:ios xrscope:eqversion:4.1.2

Trust: 1.9

vendor:ciscomodel:ios xrscope:eqversion:5.1.1

Trust: 1.6

vendor:ciscomodel:ios xrscope:eqversion:4.2.0

Trust: 1.6

vendor:ciscomodel:ios xrscope:eqversion:5.1.0

Trust: 1.6

vendor:ciscomodel:asr 9904scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:asr 9001scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:asr 9912scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:asr 9922scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:asr 9006scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:asr 9010scope:eqversion: -

Trust: 1.0

vendor:ciscomodel:asr 9001 routerscope: - version: -

Trust: 0.8

vendor:ciscomodel:asr 9006 routerscope: - version: -

Trust: 0.8

vendor:ciscomodel:asr 9010 routerscope: - version: -

Trust: 0.8

vendor:ciscomodel:asr 9904 routerscope: - version: -

Trust: 0.8

vendor:ciscomodel:asr 9912 routerscope: - version: -

Trust: 0.8

vendor:ciscomodel:asr 9922 routerscope: - version: -

Trust: 0.8

vendor:ciscomodel:ios xrscope:eqversion:4.1.2 to 5.1.1

Trust: 0.8

vendor:ciscomodel:ios xrscope:eqversion:4.1.2-5.1.1

Trust: 0.6

vendor:ciscomodel:ios xrscope:eqversion:4.3

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.2.4

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.2.3

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.2

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.0.11

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.0.4

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.0.2

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.9.1

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.9

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.8.4

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.8.3

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.8.2

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.8.1

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.8

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.7.3

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.7.2

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.7.1

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:5.1

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.2.2

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.2.1

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.1.1

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.1.0

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.0.3

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.0.1

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:4.0.0

Trust: 0.3

vendor:ciscomodel:ios xrscope:eqversion:3.9.2

Trust: 0.3

sources: CNVD: CNVD-2014-03705 // BID: 68005 // JVNDB: JVNDB-2014-002937 // CNNVD: CNNVD-201406-318 // NVD: CVE-2014-2176

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2014-2176
value: HIGH

Trust: 1.0

NVD: CVE-2014-2176
value: HIGH

Trust: 0.8

CNVD: CNVD-2014-03705
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201406-318
value: HIGH

Trust: 0.6

VULHUB: VHN-70115
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2014-2176
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2014-03705
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-70115
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2014-03705 // VULHUB: VHN-70115 // JVNDB: JVNDB-2014-002937 // CNNVD: CNNVD-201406-318 // NVD: CVE-2014-2176

PROBLEMTYPE DATA

problemtype:CWE-399

Trust: 1.1

problemtype:CWE-DesignError

Trust: 0.8

sources: VULHUB: VHN-70115 // JVNDB: JVNDB-2014-002937 // NVD: CVE-2014-2176

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201406-318

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201406-318

CONFIGURATIONS

[
  {
    "CVE_data_version": "4.0",
    "nodes": [
      {
        "operator": "OR",
        "cpe_match": [
          {
            "vulnerable": true,
            "cpe22Uri": "cpe:/h:cisco:asr_9001"
          },
          {
            "vulnerable": true,
            "cpe22Uri": "cpe:/h:cisco:asr_9006"
          },
          {
            "vulnerable": true,
            "cpe22Uri": "cpe:/h:cisco:asr_9010"
          },
          {
            "vulnerable": true,
            "cpe22Uri": "cpe:/h:cisco:asr_9904"
          },
          {
            "vulnerable": true,
            "cpe22Uri": "cpe:/h:cisco:asr_9912"
          },
          {
            "vulnerable": true,
            "cpe22Uri": "cpe:/h:cisco:asr_9922"
          },
          {
            "vulnerable": true,
            "cpe22Uri": "cpe:/o:cisco:ios_xr"
          }
        ]
      }
    ]
  }
]

sources: JVNDB: JVNDB-2014-002937

PATCH

title:33986url:http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=33986

Trust: 0.8

title:cisco-sa-20140611-ipv6url:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140611-ipv6

Trust: 0.8

title:33902url:http://tools.cisco.com/security/center/viewAlert.x?alertId=33902

Trust: 0.8

title:cisco-sa-20140611-ipv6url:http://www.cisco.com/cisco/web/support/JP/112/1122/1122727_cisco-sa-20140611-ipv6-j.html

Trust: 0.8

title:Patch for Cisco IOS XR Software IPv6 Packet Handling Denial of Service Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/46435

Trust: 0.6

sources: CNVD: CNVD-2014-03705 // JVNDB: JVNDB-2014-002937

EXTERNAL IDS

db:NVDid:CVE-2014-2176

Trust: 3.4

db:BIDid:68005

Trust: 2.0

db:SECTRACKid:1030400

Trust: 1.1

db:SECUNIAid:58722

Trust: 1.1

db:JVNDBid:JVNDB-2014-002937

Trust: 0.8

db:CNNVDid:CNNVD-201406-318

Trust: 0.7

db:CNVDid:CNVD-2014-03705

Trust: 0.6

db:VULHUBid:VHN-70115

Trust: 0.1

sources: CNVD: CNVD-2014-03705 // VULHUB: VHN-70115 // BID: 68005 // JVNDB: JVNDB-2014-002937 // CNNVD: CNNVD-201406-318 // NVD: CVE-2014-2176

REFERENCES

url:http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20140611-ipv6

Trust: 2.0

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-2176

Trust: 1.4

url:http://www.securityfocus.com/bid/68005

Trust: 1.1

url:http://www.securitytracker.com/id/1030400

Trust: 1.1

url:http://secunia.com/advisories/58722

Trust: 1.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-2176

Trust: 0.8

url:http://www.cisco.com/

Trust: 0.3

url:http://tools.cisco.com/security/center/viewalert.x?alertid=33902

Trust: 0.3

sources: CNVD: CNVD-2014-03705 // VULHUB: VHN-70115 // BID: 68005 // JVNDB: JVNDB-2014-002937 // CNNVD: CNNVD-201406-318 // NVD: CVE-2014-2176

CREDITS

Cisco

Trust: 0.3

sources: BID: 68005

SOURCES

db:CNVDid:CNVD-2014-03705
db:VULHUBid:VHN-70115
db:BIDid:68005
db:JVNDBid:JVNDB-2014-002937
db:CNNVDid:CNNVD-201406-318
db:NVDid:CVE-2014-2176

LAST UPDATE DATE

2024-11-23T22:59:40.448000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2014-03705date:2014-06-17T00:00:00
db:VULHUBid:VHN-70115date:2016-09-07T00:00:00
db:BIDid:68005date:2014-06-11T00:00:00
db:JVNDBid:JVNDB-2014-002937date:2014-06-17T00:00:00
db:CNNVDid:CNNVD-201406-318date:2014-06-16T00:00:00
db:NVDid:CVE-2014-2176date:2024-11-21T02:05:47.780

SOURCES RELEASE DATE

db:CNVDid:CNVD-2014-03705date:2014-06-17T00:00:00
db:VULHUBid:VHN-70115date:2014-06-14T00:00:00
db:BIDid:68005date:2014-06-11T00:00:00
db:JVNDBid:JVNDB-2014-002937date:2014-06-17T00:00:00
db:CNNVDid:CNNVD-201406-318date:2014-06-16T00:00:00
db:NVDid:CVE-2014-2176date:2014-06-14T11:18:55.127