CVE-2017-12238

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2017-12238
A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS 15.0 through 15.4 for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a denial of service (DoS) condition. The vulnerability is due to a memory management issue in the affected software. An attacker could exploit this vulnerability by creating a large number of VPLS-generated MAC entries in the MAC address table of an affected device. A successful exploit could allow the attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a DoS condition. This vulnerability affects Cisco Catalyst 6800 Series Switches that are running a vulnerable release of Cisco IOS Software and have a Cisco C6800-16P10G or C6800-16P10G-XL line card in use with Supervisor Engine 6T. To be vulnerable, the device must also be configured with VPLS and the C6800-16P10G or C6800-16P10G-XL line card needs to be the core-facing MPLS interfaces. Cisco Bug IDs: CSCva61927.

6.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector : AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

3.3 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:A/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 6.5 / Impact : 2.9

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://www.securityfocus.com/bid/101040 Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039453 Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:cisco:ios:15.0\(1\)sy1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(1\)sy:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(1\)sy1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(1\)sy2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(1\)sy3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(1\)sy4:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(1\)sy5:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(1\)sy6:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy4:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy4a:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy5:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy6:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy7:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy8:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy9:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.1\(2\)sy10:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(1\)sy:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(1\)sy0a:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(1\)sy1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(1\)sy1a:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(1\)sy2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(1\)sy3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(1\)sy4:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(2\)sy:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(2\)sy1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.2\(2\)sy2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.3\(1\)sy:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.3\(1\)sy1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.3\(1\)sy2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:15.4\(1\)sy:*:*:*:*:*:*:*
History

No history.

Information

Published : 2017-09-29 01:34

Updated : 2019-10-09 23:22

NVD link : CVE-2017-12238

Mitre link : CVE-2017-12238

CVE.ORG link : CVE-2017-12238

JSON object : View

Products Affected

cisco

  • ios
CWE
NVD-CWE-noinfo CWE-399

Resource Management Errors