Denial of Service Vulnerability in Cisco IOS 12.2 (Bug ID CSCtq36327)

Denial of Service Vulnerability in Cisco IOS 12.2 (Bug ID CSCtq36327)

CVE-2011-2057 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

The cat6000-dot1x component in Cisco IOS 12.2 before 12.2(33)SXI7 does not properly handle (1) a loop between a dot1x enabled port and an open-authentication dot1x enabled port and (2) a loop between a dot1x enabled port and a non-dot1x port, which allows remote attackers to cause a denial of service (traffic storm) via unspecified vectors that trigger many Spanning Tree Protocol (STP) Bridge Protocol Data Unit (BPDU) frames, aka Bug ID CSCtq36327.

Learn more about our Cis Benchmark Audit For Apple Ios.