Guest

Preview Tool

Cisco Bug: CSCun30004 - CVE-2011-3188: Linux kernel <3.1 TCP sequence number generation weakness

Last Modified

Dec 29, 2019

Products (2)

  • Cisco TelePresence Video Communication Server (VCS)
  • Cisco TelePresence Video Communication Server Model

Known Affected Releases

X5.2 X6.0 X6.1 X7.0 X7.0.1 X7.0.2 X7.0.3 X7.1 X7.2 X7.2.1 X7.2.2RC3

Description (partial)

Symptoms:
Cisco TelePresence Video Communication  Server includes a version of the Linux Kernel  that is affected by the
vulnerability identified by the following Common Vunlerability and Exposures (CVE) ID:

CVE-2011-3188: The (1)  IPv4 and (2) IPv6  implementations in the Linux  kernel before 3.1 use  a modified MD4
algorithm to generate  sequence numbers and Fragment  Identification values, which makes it  easier for remote
attackers to cause a  denial of service (disrupted networking) or hijack network  sessions by predicting these
values and sending  crafted packets. This has  been classified by the vendor  as having a CVSSv2  score of 6.8
(AV:N/AC:M/AU:N/C:P/I:P/A:P)

This bug was opened to address the potential impact on this product.

Conditions:
Running a version of Cisco TelePresence Video Communication  Server prior to 8.1
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.