The tNetTaskLimit process on the Transport Node Controller (TNC) on Cisco ONS 15454 devices with software 9.6 and earlier does not properly prioritize health pings, which allows remote attackers to cause a denial of service (watchdog timeout and TNC reset) via a flood of network traffic, aka Bug ID CSCud97155.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/viewAlert.x?alertId=32200 | Vendor Advisory |
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6701 | Vendor Advisory |
http://www.securitytracker.com/id/1029512 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2013-12-18 08:04
Updated : 2016-09-15 12:19
NVD link : CVE-2013-6701
Mitre link : CVE-2013-6701
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
cisco
- ons_15454
- ons_15454_sdh_multiservice_provisioning_platform
- ons_15454_mspp
- ons_15454e_optical_transport_platform
- ons_15454_multiservice_transport_platform
- cisco_ons_15454_system_software
- ons_15454_sonet_multiservice_provisioning_platform
- ons_15454_mstp