vulnerability

Cisco IOS-XR: CVE-2016-1407: Cisco IOS XR Software LPTS Denial of Service Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	May 19, 2016	May 19, 2021	Mar 3, 2023

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

May 19, 2016

Added

May 19, 2021

Modified

Mar 3, 2023

Description

Cisco IOS XR through 5.3.2 mishandles Local Packet Transport Services (LPTS) flow-base entries, which allows remote attackers to cause a denial of service (session drop) by making many connection attempts to open TCP ports, aka Bug ID CSCux95576.

Solution

update-xros

References

CVE-2016-1407
https://attackerkb.com/topics/CVE-2016-1407
URL-https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160519-ios-xr

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today