CVE-2016-1361

Cisco IOS XR through 4.3.2 on Gigabit Switch Router (GSR) 12000 devices does not properly check for a Bidirectional Forwarding Detection (BFD) header in a UDP packet, which allows remote attackers to cause a denial of service (line-card restart) via a crafted packet, aka Bug ID CSCuw56900.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
ADJACENT_NETWORK
HIGH
NONE
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
ciscoios_xr
3.3.3
ciscoios_xr
3.4.1
ciscoios_xr
3.4.2
ciscoios_xr
3.4.3
ciscoios_xr
3.5.2
ciscoios_xr
3.5.3
ciscoios_xr
3.5.4
ciscoios_xr
3.6.0
ciscoios_xr
3.6.1
ciscoios_xr
3.6.2
ciscoios_xr
3.6.3
ciscoios_xr
3.7.0
ciscoios_xr
3.7.1
ciscoios_xr
3.8.0
ciscoios_xr
3.8.1
ciscoios_xr
3.8.2
ciscoios_xr
3.8.4
ciscoios_xr
3.9.0
ciscoios_xr
3.9.1
ciscoios_xr
3.9.2
ciscoios_xr
4.0.0
ciscoios_xr
4.0.1
ciscoios_xr
4.0.3
ciscoios_xr
4.1.0
ciscoios_xr
4.1.1
ciscoios_xr
4.1.2
ciscoios_xr
4.2.0
ciscoios_xr
4.2.1
ciscoios_xr
4.2.2
ciscoios_xr
4.2.3
ciscoios_xr
4.2.4
ciscoios_xr
4.3.0
ciscoios_xr
4.3.1
ciscoios_xr
4.3.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160311-gsr
http://www.securitytracker.com/id/1035314
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160311-gsr
http://www.securitytracker.com/id/1035314