SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Router/Bridge/Hub)  >   Cisco ASR Router Vendors:   Cisco
Cisco ASR 9000 Series Router LPTS Input Validation Flaw Lets Remote Users Deny Service
SecurityTracker Alert ID:  1041538
SecurityTracker URL:  http://securitytracker.com/id/1041538
CVE Reference:   CVE-2018-0418   (Links to External Site)
Date:  Aug 21 2018
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in Cisco ASR 9000 Series Router. A remote user can cause denial of service conditions on the target system.

A remote user can send specially crafted Precision Time Protocol (PTP) data to the target device to trigger an input validation flaw in the Local Packet Transport Services (LPTS) implementation and cause services on the target device to become unresponsive.

The vendor has assigned bug ID CSCvj22858 to this vulnerability.

Impact:   A remote user can cause the services on the target device to become unresponsive.
Solution:   The vendor has issued a fix.

The vendor advisory is available at:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-asr-ptp-dos

Vendor URL:  tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-asr-ptp-dos (Links to External Site)
Cause:   Input validation error

Message History:   None.


 Source Message Contents

Subject:  https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-asr-ptp-dos

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC