The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Cisco, Junos: denial of service via IPv6 Neighbor Discovery

Synthesis of the vulnerability 

An attacker can send a malicious IPv6 Neighbor Discovery packet to Cisco or Junos, in order to trigger a denial of service.
Impacted software: ASA, Cisco Catalyst, IOS by Cisco, IOS XE Cisco, IOS XR Cisco, Nexus by Cisco, NX-OS, Cisco Router, Juniper E-Series, Juniper J-Series, JUNOSe, Junos OS.
Severity of this computer vulnerability: 2/4.
Creation date: 26/05/2016.
Revisions dates: 27/05/2016, 01/06/2016, 02/06/2016, 06/06/2016, 04/07/2016.
Références of this announce: CERTFR-2019-AVI-447, cisco-sa-20160525-ipv6, CSCuz66542, CSCuz79330, CVE-2016-1409, JSA10749, VIGILANCE-VUL-19702.

Description of the vulnerability 

The Cisco or Junos product has a service to manage received IPv6 Neighbor Discovery packets.

However, when a malicious packet is received, a fatal error occurs.

An attacker can therefore send a malicious IPv6 Neighbor Discovery packet to Cisco or Junos, in order to trigger a denial of service.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer vulnerability announce impacts software or systems such as ASA, Cisco Catalyst, IOS by Cisco, IOS XE Cisco, IOS XR Cisco, Nexus by Cisco, NX-OS, Cisco Router, Juniper E-Series, Juniper J-Series, JUNOSe, Junos OS.

Our Vigil@nce team determined that the severity of this cybersecurity bulletin is medium.

The trust level is of type confirmed by the editor, with an origin of LAN.

An attacker with a expert ability can exploit this threat alert.

Solutions for this threat 

Cisco: solution for IPv6 Neighbor Discovery.
BugIDs are available:
  https://tools.cisco.com/bugsearch/bug/CSCuz66542
  https://tools.cisco.com/bugsearch/bug/CSCuz79330
  https://tools.cisco.com/bugsearch/bug/CSCuz80276
  https://tools.cisco.com/bugsearch/bug/CSCuz80281
  https://tools.cisco.com/bugsearch/bug/CSCuz81292
  https://tools.cisco.com/bugsearch/bug/CSCuz83883
  https://tools.cisco.com/bugsearch/bug/CSCuz89940
  https://tools.cisco.com/bugsearch/bug/CSCuz96600
  https://tools.cisco.com/bugsearch/bug/CSCva21637
  https://tools.cisco.com/bugsearch/bug/CSCva33531
  https://tools.cisco.com/bugsearch/bug/CSCva39982
  https://tools.cisco.com/bugsearch/bug/CSCva61877
  https://tools.cisco.com/bugsearch/bug/CSCva94139

Junos, JUNOSe: solution for IPv6 Neighbor Discovery.
The solution is indicated in information sources.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a system vulnerability watch. The Vigil@nce vulnerability database contains several thousand vulnerabilities.