CVE-2014-3347

Published: Aug 28, 2014Modified: May 6, 2026

5.4

Vector

AV:N/AC:H/Au:N/C:N/I:N/A:C

Exploitability: 4.9 / Impact: 6.9

Source: NVD

Description

Cisco IOS 15.1(4)M2 on Cisco 1800 ISR devices, when the ISDN Basic Rate Interface is enabled, allows remote attackers to cause a denial of service (device hang) by leveraging knowledge of the ISDN phone number to trigger an interrupt timer collision during entropy collection, leading to an invalid state of the hardware encryption module, aka Bug ID CSCul77897.

Affected (8)

Products: Cisco: Ios, 1801 Integrated Service Router, 1802 Integrated Service Router, 1803 Integrated Service Router, 1811 Integrated Service Router, 1812 Integrated Service Router, 1841 Integrated Service Router, 1861 Integrated Service Router

Cisco

8 products

Ios

1801 Integrated Service Router

1802 Integrated Service Router

1803 Integrated Service Router

1811 Integrated Service Router

1812 Integrated Service Router

1841 Integrated Service Router

1861 Integrated Service Router

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Cisco Ios	Version 15.1(4)m2
Cisco 1801 Integrated Service Router	All versions
Cisco 1802 Integrated Service Router	All versions
Cisco 1803 Integrated Service Router	All versions
Cisco 1811 Integrated Service Router	All versions
Cisco 1812 Integrated Service Router	All versions
Cisco 1841 Integrated Service Router	All versions
Cisco 1861 Integrated Service Router	All versions