Cisco IOS Policy Feature Card 3C (PFC3C)拒绝服务漏洞
Cisco IOS Policy Feature Card 3C (PFC3C)拒绝服务漏洞
发布日期:2012-05-10
更新日期:2012-05-16
受影响系统:
Cisco IOS 15.1
Cisco IOS 15.0
Cisco IOS 12.0
描述:
--------------------------------------------------------------------------------
CVE ID: CVE-2011-4012
Cisco的网际操作系统(IOS)是一个为网际互连优化的复杂操作系统。
Cisco IOS 12.0、15.0、15.1在使用Policy Feature Card 3C (PFC3C)处理ICMPv6 ACL时没有创建碎片条目,远程攻击者可利用此漏洞导致拒绝服务。
<*来源:vendor
链接:http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/release/notes/caveats_SXJ.html
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(caveats_SXJ)以及相应补丁:
caveats_SXJ:Caveats in Release 12.2(33)SXJ and Rebuilds
链接:http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/release/notes/caveats_SXJ.html
评论暂时关闭