Buffer overflow in Cisco 7600_router

CVE-2013-6693

The MLDP implementation in Cisco IOS 15.3(3)S and earlier on 7600 routers, when many VRFs are configured, allows remote attackers to cause a denial of service (chunk corruption and device reload) by establishing many multicast flows, aka B…

Vulnerability class: Buffer Overflow

EPSS: 0.004 (59.3th percentile) — read the EPSS interpretation.

Affected products

Cisco 7600_router
Cisco Ios — versions 15.3\(2\)s, 15.3s
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
20131121 Cisco IOS Software MLDP Denial of Service Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)