Guest

Preview Tool

Cisco Bug: CSCul63127 - Cisco IOS XR SSH Disconnect Error Vulnerability

Last Modified

Sep 03, 2020

Products (1)

  • Cisco ASR 9000 Series Aggregation Services Routers

Known Affected Releases

5.1.1.K9SEC

Description (partial)

Symptom:
A vulnerability in Cisco IOS XR Software could allow an "authenticated", remote attacker to cause a denial of service (DoS) condition.

The vulnerability is due to an error that could occur in the affected software when an SSH connection is disconnected from an affected device. An authenticated, remote attacker could exploit the vulnerability to cause the vty to become unreachable and cause further SSH or Telnet connections to the device to fail, resulting in a DoS condition.

Conditions:
Device running with default configuration running an affected version of software with 
frequent access via SSH to the Cisco IOS XR router.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.