CVE-2014-3335 — MEDIUM (4.6)

Q: How severe is CVE-2014-3335?

CVE-2014-3335 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2014-3335?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios Xr, Cisco Asr 9000 Rsp440 Router, Cisco Asr 9001, Cisco Asr 9006, Cisco Asr 9010.

Vulnerability Description

Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote attackers to cause a denial of service (chip and card hangs) via a crafted packet, aka Bug ID CSCup77750.

CVSS Score

4.6

MEDIUM

AV:A/AC:H/Au:N/C:N/I:N/A:C

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Cisco	Ios Xr	<= 4.3.2
Cisco	Asr 9000 Rsp440 Router	-
Cisco	Asr 9001	-
Cisco	Asr 9006	-
Cisco	Asr 9010	-
Cisco	Asr 9904	-
Cisco	Asr 9912	-
Cisco	Asr 9922	-

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2014-3335?

CVE-2014-3335 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote attackers to cause a denial of ...

How severe is CVE-2014-3335?

CVE-2014-3335 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-3335?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios Xr, Cisco Asr 9000 Rsp440 Router, Cisco Asr 9001, Cisco Asr 9006, Cisco Asr 9010.