Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attackers to cause a denial of service (chip and card hangs and reloads) by triggering use of a BVI interface for IPv4 packets, aka Bug ID CSCur62957.
2015-04-17T01:59:26.263
2025-04-12T10:46:40.837
Deferred
CVSSv2: 7.8 (HIGH)
AV:N/AC:L/Au:N/C:N/I:N/A:C
10.0
6.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | cisco | ios_xr | 4.3.0 | Yes |
| Operating System | cisco | ios_xr | 4.3.1 | Yes |
| Operating System | cisco | ios_xr | 4.3.2 | Yes |
| Operating System | cisco | ios_xr | 4.3.3 | Yes |
| Operating System | cisco | ios_xr | 5.1.0 | Yes |
| Operating System | cisco | ios_xr | 5.1.1 | Yes |
| Operating System | cisco | ios_xr | 5.1.2 | Yes |
| Operating System | cisco | ios_xr | 5.2.0 | Yes |
| Operating System | cisco | ios_xr | 5.2.1 | Yes |
| Hardware | cisco | asr_9001 | - | No |
| Hardware | cisco | asr_9006 | - | No |
| Hardware | cisco | asr_9010 | - | No |
| Hardware | cisco | asr_9904 | - | No |
| Hardware | cisco | asr_9912 | - | No |
| Hardware | cisco | asr_9922 | - | No |