=====================================================================

                           CERT-Renater

               Note d'Information No. 2013/VULN436
_____________________________________________________________________

DATE                : 02/10/2013

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S):   Cisco IOS XR version 4.3.1.

======================================================================
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131002-iosxr
______________________________________________________________________

 Cisco Security Advisory: Cisco IOS XR Software Memory Exhaustion
Vulnerability

Advisory ID: cisco-sa-20131002-iosxr

Revision 1.0

For Public Release 2013 October 2 16:00  UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

Cisco IOS XR Software version 4.3.1 contains a vulnerability that could
result in complete packet memory exhaustion.  Successful exploitation
could render critical services on the affected device unable to
allocate packets resulting in a denial of service (DoS) condition.

Cisco has released free software updates that address this
vulnerability.

Workarounds that mitigate this vulnerability are available.

This advisory is available at the following link:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131002-iosxr

=========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================