Cisco StarOS 16.4.1/19.1.0/21.1.0/21.1.M0.65824 on ASR 5000 BGP resource management
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.1 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as problematic, has been found in Cisco StarOS 16.4.1/19.1.0/21.1.0/21.1.M0.65824 on ASR 5000. This affects an unknown part of the component BGP Handler. The manipulation leads to resource management. This vulnerability is documented as CVE-2017-6729. The attack can be initiated remotely. There is not any exploit available. It is advisable to upgrade the affected component.
Details
A vulnerability was found in Cisco StarOS 16.4.1/19.1.0/21.1.0/21.1.M0.65824 on ASR 5000 (Router Operating System). It has been rated as problematic. This issue affects an unknown functionality of the component BGP Handler. The manipulation with an unknown input leads to a resource management vulnerability. Using CWE to declare the problem leads to CWE-399. Impacted is availability. The summary by CVE is:
A vulnerability in the Border Gateway Protocol (BGP) processing functionality of the Cisco StarOS operating system for Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core (VPC) Software could allow an unauthenticated, remote attacker to cause the BGP process on an affected system to reload, resulting in a denial of service (DoS) condition. This vulnerability affects the following products if they are running the Cisco StarOS operating system and BGP is enabled for the system: Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core Software. More Information: CSCvc44968. Known Affected Releases: 16.4.1 19.1.0 21.1.0 21.1.M0.65824. Known Fixed Releases: 21.3.A0.65902 21.2.A0.65905 21.1.b0.66164 21.1.V0.66014 21.1.R0.65898 21.1.M0.65894 21.1.0.66030 21.1.0.
The bug was discovered 07/05/2017. The weakness was released 07/10/2017 with Cisco as cisco-sa-20170705-staros as confirmed advisory (Website). It is possible to read the advisory at tools.cisco.com. The identification of this vulnerability is CVE-2017-6729 since 03/09/2017. The attack may be initiated remotely. No form of authentication is needed for a successful exploitation. The technical details are unknown and an exploit is not publicly available.
The vulnerability scanner Nessus provides a plugin with the ID 101529 (Cisco ASR StarOS Border Gateway Protocol Process DoS (cisco-sa-20170705-staros)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family CISCO and running in the context l.
Upgrading to version 21.3.A0.65902, 21.2.A0.65905, 21.1.b0.66164, 21.1.V0.66014, 21.1.R0.65898, 21.1.M0.65894, 21.1.0.66030 or 21.1.0 eliminates this vulnerability. A possible mitigation has been published even before and not after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (101529) and SecurityFocus (BID 100015†). Be aware that VulDB is the high quality source for vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.cisco.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.4VulDB Meta Temp Score: 6.3
VulDB Base Score: 5.3
VulDB Temp Score: 5.1
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.5
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Resource managementCWE: CWE-399 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 101529
Nessus Name: Cisco ASR StarOS Border Gateway Protocol Process DoS (cisco-sa-20170705-staros)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: StarOS 21.3.A0.65902/21.2.A0.65905/21.1.b0.66164/21.1.V0.66014/21.1.R0.65898/21.1.M0.65894/21.1.0.66030/21.1.0
Timeline
03/09/2017 🔍07/05/2017 🔍
07/05/2017 🔍
07/10/2017 🔍
07/10/2017 🔍
07/12/2017 🔍
07/13/2017 🔍
07/28/2017 🔍
12/31/2020 🔍
Sources
Vendor: cisco.comAdvisory: cisco-sa-20170705-staros
Researcher: Cisco
Organization: Cisco
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2017-6729 (🔍)
GCVE (CVE): GCVE-0-2017-6729
GCVE (VulDB): GCVE-100-103391
SecurityFocus: 100015 - Cisco StarOS CVE-2017-6729 Remote Denial of Service Vulnerability
SecurityTracker: 1038819
Entry
Created: 07/12/2017 10:17Updated: 12/31/2020 14:25
Changes: 07/12/2017 10:17 (70), 10/24/2019 16:52 (6), 12/31/2020 14:22 (2), 12/31/2020 14:25 (1)
Complete: 🔍
Cache ID: 216::103
Be aware that VulDB is the high quality source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.