Cisco NetFlow Generation Appliance SCTP Decoder Flaw Lets Remote Users Cause the Target System to Reload
Severity Rating: High
The following Cisco NetFlow Generation Appliances are vulnerable:
- NGA 3140
- NGA 3240
- NGA 3340
A vulnerability has been identified in the Stream Control Transmission Protocol (SCTP) decoder of the Cisco NetFlow Generation Appliance (NGA) and could allow remote attackers to cause the device to hang or unexpectedly reload, causing a denial of service condition. The vulnerability is caused due to incomplete validation of SCTP packets being monitored on the NGA data ports. This vulnerability can be exploited by sending a malformed SCTP packet on a network that is monitored by an NGA data port. This vulnerability can allow the attacker to cause the appliance to become unresponsive or reload causing a denial of service condition. User interaction could be required to recover the device using the reboot command from the CLI.
Users are advised to apply updates.
More information about the update is available on:
Cisco Security Bulletin
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street