The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (packet-processing outage) via crafted ND messages, aka Bug ID CSCuz66542, as exploited in the wild in May 2016.
No CVSS v3.1
Attack Vector Network
Attack Complexity Low
Privileges Required None
Scope Unchanged
Confidentiality Impact None
Integrity Impact None
Availability Impact High
User Interaction None
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial
AV:N/AC:L/Au:N/C:N/I:N/A:P
| Vendors | Products |
|---|---|
| Cisco |
|
Configuration 1 [-]
|
References
| Link | Resource |
|---|---|
| http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160525-ipv6 | Vendor Advisory |
| http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-ipv6-en | Third Party Advisory |
| http://www.securityfocus.com/bid/90872 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1035962 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1035963 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1035964 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1035965 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1036651 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2016-05-29T22:00:00
Updated: 2017-08-15T09:57:01
Reserved: 2016-01-04T00:00:00
Link: CVE-2016-1409
JSON object: View
NVD Information
Status : Modified
Published: 2016-05-29T22:59:01.373
Modified: 2017-08-16T01:29:04.960
Link: CVE-2016-1409
JSON object: View
Redhat Information
No data.
CWE