Skip Ribbon Commands
Skip to main content
Computer Emergency Response Team of Mauritius (CERT-MU)

VN-2017-36


Cisco NetFlow Generation Appliance SCTP Decoder Flaw Lets Remote Users Cause the Target System to Reload
Severity Rating: High
Systems Affected:
The following Cisco NetFlow Generation Appliances are vulnerable:
  • NGA 3140
  • NGA 3240
  • NGA 3340
Description
A vulnerability has been identified in the Stream Control Transmission Protocol (SCTP) decoder of the Cisco NetFlow Generation Appliance (NGA) and could allow remote attackers to cause the device to hang or unexpectedly reload, causing a denial of service condition. The vulnerability is caused due to incomplete validation of SCTP packets being monitored on the NGA data ports. This vulnerability can be exploited by sending a malformed SCTP packet on a network that is monitored by an NGA data port. This vulnerability can allow the attacker to cause the appliance to become unresponsive or reload causing a denial of service condition. User interaction could be required to recover the device using the reboot command from the CLI.
 
Solution
Users are advised to apply updates.
More information about the update is available on:
 
Vendor Information
Cisco
 
CVE Information
 
References
Security Tracker
 
Cisco Security Bulletin
 
Contact Information
 
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis