Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   


Try our Premium Alert Service
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Become a Partner and License Our Database or Notification Service

Category:   Device (Router/Bridge/Hub)  >   Cisco IOS Vendors:   Cisco
Cisco IOS LLDP Processing Error Lets Remote Users Cause the Target System to Crash
SecurityTracker Alert ID:  1036129
SecurityTracker URL:
CVE Reference:   CVE-2016-1425   (Links to External Site)
Date:  Jun 18 2016
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 15.0(2)SG5, 15.1(2)SG3, 15.2(1)E, 15.3(3)S, 15.4(1.13)S, 15.2(1)T1.11, 15.2(2)TST
Description:   A vulnerability was reported in Cisco IOS. A remote user can cause the target system to crash.

A remote user on the local network can send specially crafted Link Layer Discovery Protocol (LLDP) packets to cause the target device to crash.

The vendor has assigned bug ID CSCun66735 to this vulnerability for 15.0(2)SG5, 15.1(2)SG3, 15.2(1)E, 15.3(3)S, and 15.4(1.13)S.

The vendor has assigned bug ID CSCun63132 to this vulnerability for 15.2(1)T1.11 and 15.2(2)TST.

Impact:   A remote user on the local network can cause the target device to crash.
Solution:   The vendor has issued a fix.

The vendor's advisories are available at:

Vendor URL: (Links to External Site)
Cause:   State error

Message History:   None.

 Source Message Contents

[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

Copyright 2018, LLC