[SingCERT] Cisco IOS Data-Link Switching Vulnerability

[ Summary ]
Cisco IOS is prone to  a remote denial-of-service vulnerability because of an unspecified error related to data-link switching. Attackers can exploit this issue by sending a series of specially-crafted packets within a narrow time frame.

Attack Scenarios:
1. An attacker locates a device using the vulnerable software.

2. The attacker constructs and submits a malicious packet designed to leverage the issue.

3. When the device tries to process the packet, a denial-of-service condition occurs.

Attackers can use readily available network tools to exploit this issue.

[ Affected Systems ]
This vulnerability affects Cisco IOS 12.2, 12.3, 12.4, 15.0, and 15.1.

[ Impact Analysis ]
Successfully exploiting this issue allows remote attackers to crash the affected device, denying service to legitimate users.

[ Solution/Workaround ]
Updates are available.

[ Reference ]
http://www.cisco.com/en/US/docs/cable/cmts/release/notes/12_2sc/uBR7200/122_33_SCF/caveats.html
http://www.cisco.com/en/US/products/sw/iosswrel/products_ios_cisco_ios_software_category_home.html
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SY/release/notes/ol_20679.html
http://www.securitytracker.com/id/1025965