Guest

Preview Tool

Cisco Bug: CSCuo55180 - ASR1K with pppoe subscribers block overrun crash

Last Modified

Jan 24, 2017

Products (17)

  • Cisco IOS
  • Cisco 7301 Router
  • Cisco ME 3600X-24TS-M Switch
  • Cisco 7206 Router
  • Cisco 7206VXR Router
  • Cisco 7204 Router
  • Cisco 7202 Router
  • Cisco 7600 Series Route Switch Processor 720 with Multilayer Switch Feature Card
  • Cisco 7600 Series Route Switch Processor 720 with 10 Gigabit Ethernet Uplinks
  • Cisco ME 3600X-24FS-M Switch
View all products in Bug Search Tool Login Required

Known Affected Releases

15.2(4)S2

Description (partial)

Symptom:
A vulnerability in PPPoE processing code of Cisco IOS XE could allow an unauthenticated, adjacent attacker to cause a reload of the affected device 
and eventually a denial of service (DoS) condition.

The vulnerability is due to improper processing of certain malformed PPPoE packets. An attacker could exploit this vulnerability by sending a 
malformed PPPoE packet to an IOS XE ASR1000 device, configured with PPPoE termination. An exploit could allow the attacker to cause a reload of 
the affected device and eventually a denial of service (DoS) condition.

Conditions:
Cisco ASR 1000 with IOS XE, configured for PPPoE termination.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.