Cisco IOS Multiple VLAN Trunking Protocol Vulnerabilities

Cisco IOS is prone to multiple vulnerabilities when handling VLAN Trunking Protocol (VTP) packets.

These issues include two denial-of-service vulnerabilities and a buffer-overflow vulnerability.

Attackers require access to trunk ports on affected devices for VTP packets to be accepted. Attackers may reportedly use the Dynamic Trunk Protocol (DTP) to become a trunking peer to gain required access.

By exploiting these issues, attackers may crash affected routers, cause further VTP packets to be ignored, or potentially execute arbitrary machine code in the context of affected devices.

Cisco IOS 12.1(19) is vulnerable to these issues; other versions are also likely affected.


 

Privacy Statement
Copyright 2010, SecurityFocus