CVE-2014-3262: The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate parameters in ITR control…

medium4.3CVSS 3.1

AVNACMAuNCNINAP

The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate parameters in ITR control messages, which allows remote attackers to cause a denial of service (CEF outage and packet drops) via malformed messages, aka Bug ID CSCun73782.

Affected

4 ranges

Vendor	Product	Version range	Fixed in
cisco	ios	<= 15.3\(3\)s	—
cisco	ios	—	—
cisco	ios	—	—
cisco	ios	—	—