CVE-2014-3262
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate parameters in ITR control messages, which allows remote attackers to cause a denial of service (CEF outage and packet drops) via malformed messages, aka Bug ID CSCun73782.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0064 (0.6%)
Percentil: 70.7%
EPSS: 2026-05-06
Afecta
cisco:ioscisco:ios_xeDescripción técnica
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate parameters in ITR control messages, which allows remote attackers to cause a denial of service (CEF outage and packet drops) via malformed messages, aka Bug ID CSCun73782.
Publicada: 16/5/2014, 11:12:01
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3262
- http://tools.cisco.com/security/center/viewAlert.x?alertId=34233
- http://www.securitytracker.com/id/1030243
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3262
- http://tools.cisco.com/security/center/viewAlert.x?alertId=34233
- http://www.securitytracker.com/id/1030243