CVE-2011-0945

HIGH

Memory leak in the Data-link switching (aka DLSw) feature in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xS before 3.1.3S and 3.2.xS before 3.2.1S, when implemented over Fast Sequence Transport (FST), allows remote attackers to cause a denial of service (memory consumption and device reload or hang) via a crafted IP protocol 91 packet, aka Bug ID CSCth69364.

CVSS v2.0 Score

7.8

/ 10.0

HIGH

AV:N/AC:L/Au:N/C:N/I:N/A:C

Information

Published: 3 oct. 2011
Updated: 29 avr. 2026
Status: Modified
Source: psirt@cisco.com

Affected products

cisco ios

Versions : 12.1, 12.1t, 12.1xi, 12.1xj, 12.1xl

cisco ios xeAll Cisco IOS XE CVEs →

Versions : 3.1.0s, 3.1.1s, 3.1.2s, 3.2.0s

Weaknesses (CWE)

CWE-399

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=24116
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d4e.shtml
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=24116
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d4e.shtml
Vendor Advisory

Similar CVEs

Other vulnerabilities of type CWE-399

Loading…

Monitor your products

Get automatic alerts for every new CVE affecting your equipment.

Enable monitoring