VDB
CVE-2011-0945
CVE-2011-0945
PUBLISHED
CVSS 7.800000190734863 HIGH
Memory leak in the Data-link switching (aka DLSw) feature in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xS before 3.1.3S and 3.2.xS before 3.2.1S, when implemented over Fast Sequence Transport (FST), allows remote attackers to cause a denial of service (memory consumption and device reload or hang) via a crafted IP protocol 91 packet, aka Bug ID CSCth69364.
EPSS 0.43% · 62.7th percentile
Risk Scores
CVSS 2.0
7.800000190734863
EPSS Score
0.43%
62.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | ios_xe | 3.1.0s, 3.1.1s, 3.1.2s |
| cisco | ios | *, *, * |
| n/a | n/a | *, * |
Exploit Intelligence
- Cisco IOS Data-Link Switching Memory Leak Remote Denial of Service Vulnerability (variot)
- Cisco IOS Data-Link Switching Memory Leak Remote Denial of Service Vulnerability (variot)
- Cisco IOS Data-Link Switching Memory Leak Remote Denial of Service Vulnerability (variot)
- 20110928 Cisco IOS Software Data-Link Switching Vulnerability (circl)
- http://tools.cisco.com/security/center/viewAlert.x?alertId=24116 (circl)
Timeline
- Sep 28, 2011 PoC Published
- Oct 3, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 17, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score