CVE-2002-2315
Description
Cisco IOS 11.2.x and 12.0.x does not limit the size of its redirect table, which allows remote attackers to cause a denial of service (memory consumption) via spoofed ICMP redirect packets to the router.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:o:cisco:ios:11.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:cisco:ios:11.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:11.1:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:11.3:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*
- (no CPE)range: 11.2.x, 12.0.x
Patches
Vulnerability mechanics
Root cause
"The router does not limit the size of its redirect table."
Attack vector
Remote attackers can send a large amount of spoofed ICMP redirect messages to a vulnerable Cisco router. This causes the router to consume excessive memory as it attempts to store these redirects in its table. The vulnerability is present in Cisco IOS versions 11.2.x and 12.0.x [ref_id=1].
What the fix does
The advisory does not specify a patch or a fix for this vulnerability. It is recommended to upgrade to a fixed release if available, or to disable ICMP redirects if they are not needed. The advisory does not provide details on how to implement these mitigations.
Preconditions
- networkThe router must be reachable by the attacker over the network.
- configThe router must be running Cisco IOS versions 11.2.x or 12.0.x [ref_id=1].
Reproduction
On high bandwidth networks, the command line switch -w0 can be used to increase the sending rate. linuxbox# cd /where/irpas/is linuxbox# make libpackets.a linuxbox# gcc -o icmp_redflod -I. -L. icmp_redflod.c -lpackets linuxbox# ./icmp_redflod -i eth0 -D <destination_ip> -G <fake_gateway> [ref_id=1]
Generated on Jun 2, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4News mentions
0No linked articles in our index yet.