Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device. Cisco Bug IDs: CSCvd73664.
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.
| Link | Tags |
|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-lldp | vendor advisory |
| https://ics-cert.us-cert.gov/advisories/ICSA-18-107-03 | third party advisory us government resource |
| https://ics-cert.us-cert.gov/advisories/ICSA-18-107-04 | third party advisory us government resource |
| http://www.securitytracker.com/id/1040586 | broken link third party advisory vdb entry |
| https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05 | third party advisory us government resource |
| http://www.securityfocus.com/bid/103564 | broken link third party advisory vdb entry |