[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-4650Date: (C)2006-09-08   (M)2023-12-22


Cisco IOS 12.0, 12.1, and 12.2, when GRE IP tunneling is used and the RFC2784 compliance fixes are missing, does not verify the offset field of a GRE packet during decapsulation, which leads to an integer overflow that references data from incorrect memory locations, which allows remote attackers to inject crafted packets into the routing queue, possibly bypassing intended router ACLs.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.6
Exploit Score: 4.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: HIGH
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
SECTRACK-1016799
SREASON-1526
BID-19878
http://www.cisco.com/en/US/tech/tk827/tk369/tsd_technology_security_response09186a008072cd7b.html
http://www.securityfocus.com/archive/1/archive/1/445322/100/0/threaded
SECUNIA-21783
OSVDB-28590
ADV-2006-3502
cisco-ios-gre-acl-bypass(28786)
http://www.phenoelit.de/stuff/CiscoGRE.txt

CPE    3
cpe:/o:cisco:ios:12.1
cpe:/o:cisco:ios:12.2
cpe:/o:cisco:ios:12.0

© SecPod Technologies