CVE-2004-0589Cisco IOS vulnerability

CWE-3994 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
1.4%
top 19.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOSCisco IOS Malformed BGP Packet Causes Reload
Timeline
PublishedAug 6
Latest updateApr 29

Description

Cisco IOS 11.1(x) through 11.3(x) and 12.0(x) through 12.2(x), when configured for BGP routing, allows remote attackers to cause a denial of service (device reload) via malformed BGP (1) OPEN or (2) UPDATE messages.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDcisco/ios11.112.2\(14\)sx2

Patches

Patch: www.kb.cert.orgPatch: www.kb.cert.org

🔴Vulnerability Details

1
GHSA
GHSA-7h4g-phhp-6jm7: Cisco IOS 112022-04-29

📋Vendor Advisories

2
Cisco
Cisco IOS Malformed BGP Packet Causes Reload2004-06-16
Cisco
Cisco IOS Malformed BGP Packet Causes Reload
CVE-2004-0589 — Cisco IOS vulnerability | cvebase