CVE-2020-3508 – A vulnerability in the IP Address Resolution Protocol (ARP) feature of Cisco IOS XE Softwa …

24 September 2020

Vuln ID: CVE-2020-3508

Published: 2020-09-24 18:15:20Z

Description: A vulnerability in the IP Address Resolution Protocol (ARP) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers with a 20-Gbps Embedded Services Processor (ESP) installed could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service condition. The vulnerability is due to insufficient error handling when an affected device has reached platform limitations. An attacker could exploit this vulnerability by sending a malicious series of IP ARP messages to an affected device. A successful exploit could allow the attacker to exhaust system resources, which would eventually cause the affected device to reload.

Source: NVD.NIST.GOV

Date:

24 September 2020

Categorie(s):

NVD

Tag(s):

NVD

Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam19 May 2024
Week in review: New Black Basta’s social engineering campaign, passing the CISSP exam in 6 weeks19 May 2024
Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide19 May 2024
Enhanced Security for Enterprises: Google Launches Google Threat Intelligence19 May 2024
Hackers Exploiting Docusign With Phishing Attack To Steal Credentials19 May 2024