NVD

Id
10560  
Name
CVE-2011-4007  
Description
Cisco IOS 15.0 and 15.1 and IOS XE 3.x do not properly handle the "set mpls experimental imposition" command, which allows remote attackers to cause a denial of service (device crash) via network traffic that triggers (1) fragmentation or (2) reassembly, aka Bug ID CSCtr56576.  
Reject
 
CVSS Version
2  
CVSS Score
5.4  
Severity
Medium  
CVSS Base Score
5.4  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:N/I:N/A:C)  
Pub Date
2017-01-07  
Published
2012-05-02  
Modified Date
2012-10-29  
Seq
2011-4007  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
59800 10560 CVE-2011-4007 http://www.cisco.com/en/US/docs/ios/ios_xe/3/release/notes/asr1k_caveats_33s.html  View
59801 10560 CVE-2011-4007 1027005  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
26513 JVNDB-2012-002220 Cisco IOS および IOS XE におけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 Cisco IOS および IOS XE は、"set mpls experimental imposition" コマンドを適切に処理しないため、サービス運用妨害 (デバイスクラッシュ) 状態となる脆弱性が存在します。 CVE-2011-4007 51914 CVE-2011-4007 10560 5.4 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002220.html 2012-05-02 2012-05-08 View