Cisco Cisco IOS Software Releases 12.2 MC Notas de publicación
10
Release Notes for Cisco MGX-RPM-1FE-CP Back Card for Cisco IOS Release 12.2(15)MC2c
OL-2920-08
Caveats in Cisco IOS Release 12.2(15)MC2b
Note
If you have an account with Cisco.com, you can use Bug Navigator II to find caveats of any severity for
any release. To reach Bug Navigator II, Login to Cisco.com and click Software Center: Cisco IOS
Software: Cisco Bugtool Navigator II. Another option is to go directly to
http://www.cisco.com/support/bugtools.
any release. To reach Bug Navigator II, Login to Cisco.com and click Software Center: Cisco IOS
Software: Cisco Bugtool Navigator II. Another option is to go directly to
http://www.cisco.com/support/bugtools.
Open Caveats
There are no known open caveats in Cisco IOS Release 12.2(15)MC2c.
Resolved Caveats
This section lists the caveats that are resolved in Release 12.2(15)MC2c.
•
CSCsb04965
A vulnerability exists in certain Cisco IOS software release trains running on the Cisco IAD2400
series, Cisco 1900 series Mobile Wireless Edge Routers and Cisco VG224 Analog Phone Gateways.
Vulnerable versions may contain a default hard-coded Simple Network Management Protocol
(SNMP) community string when SNMP is enabled on the device. The default community string is
a result of inadvertently identifying these devices as supporting Data Over Cable Service Interface
Specification (DOCSIS) compliant interfaces. The consequence of this error is that an additional
read-write community string may be enabled if the device is configured for SNMP management,
allowing a knowledgeable attacker the potential to gain privileged access to the device.
series, Cisco 1900 series Mobile Wireless Edge Routers and Cisco VG224 Analog Phone Gateways.
Vulnerable versions may contain a default hard-coded Simple Network Management Protocol
(SNMP) community string when SNMP is enabled on the device. The default community string is
a result of inadvertently identifying these devices as supporting Data Over Cable Service Interface
Specification (DOCSIS) compliant interfaces. The consequence of this error is that an additional
read-write community string may be enabled if the device is configured for SNMP management,
allowing a knowledgeable attacker the potential to gain privileged access to the device.
Cisco is making free software available to address this vulnerability for affected customers. There
are workarounds available to mitigate the effects of the vulnerability.
are workarounds available to mitigate the effects of the vulnerability.
This advisory is posted at
.
•
CSCef68324
Cisco Internetwork Operating System (IOS) software is vulnerable to a Denial of Service (DoS) and
potentially an arbitrary code execution attack from a specifically crafted IPv6 packet. The packet
must be sent from a local network segment. Only devices that have been explicitly configured to
process IPv6 traffic are affected. Upon successful exploitation, the device may reload or be open to
further exploitation.
potentially an arbitrary code execution attack from a specifically crafted IPv6 packet. The packet
must be sent from a local network segment. Only devices that have been explicitly configured to
process IPv6 traffic are affected. Upon successful exploitation, the device may reload or be open to
further exploitation.
Cisco has made free software available to address this vulnerability for all affected customers.
More details can be found in the security advisory that is posted at
.
Caveats in Cisco IOS Release 12.2(15)MC2b
The following sections list and describe the open and resolved caveats for the Cisco MGX-RPM-1FE-CP
with Cisco IOS Release 12.2(15)MC2b. Only severity 1 through 3 caveats are included.
with Cisco IOS Release 12.2(15)MC2b. Only severity 1 through 3 caveats are included.
Caveats describe unexpected behavior in Cisco IOS software releases. Severity 1 caveats are the most
serious caveats, severity 2 caveats are less serious, and severity 3 caveats are the least serious of these
three severity levels.
serious caveats, severity 2 caveats are less serious, and severity 3 caveats are the least serious of these
three severity levels.