CVE-2016-1436

Public PoC / Exploit

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The General Packet Radio Switching Tunneling Protocol 1 (aka GTPv1) implementation on Cisco ASR 5000 Packet Data Network Gateway devices before 19.4 allows remote attackers to cause a denial of service (Session Manager process restart) via a crafted GTPv1 packet, aka Bug ID CSCuz46198.

Weaknesses (CWE)

CWE-119

Affected Products (22)

cisco · asr_5000_softwarevulnerable

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160621-asr

Vendor Advisory

http://www.securitytracker.com/id/1036152

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160621-asr

Vendor Advisory

http://www.securitytracker.com/id/1036152