CVE-2011-2549
Description
A remote attacker can cause a line-card reload on Cisco ASR 9000 series routers running IOS XR 4.1.x before 4.1.1 by sending a crafted IPv4 packet.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A remote attacker can cause a line-card reload on Cisco ASR 9000 series routers running IOS XR 4.1.x before 4.1.1 by sending a crafted IPv4 packet.
Vulnerability
An unspecified vulnerability in Cisco IOS XR 4.1.x versions prior to 4.1.1 on Cisco Aggregation Services Routers (ASR) 9000 series devices allows remote attackers to cause a denial of service. The bug is triggered by a specially crafted IPv4 packet and is identified by Cisco Bug ID CSCtr26695 [1].
Exploitation
An attacker can exploit this vulnerability by sending a single crafted IPv4 packet to an affected device. No authentication or prior access is required; the attack is performed remotely over the network [1].
Impact
Successful exploitation causes a line-card reload, resulting in a denial of service condition that disrupts network traffic processing on the affected line card. The attack does not compromise data confidentiality or integrity but impacts availability [1].
Mitigation
Cisco released IOS XR version 4.1.1 to address this vulnerability. Users should upgrade to 4.1.1 or later. No workarounds are documented in the available references [1].
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
5- cpe:2.3:h:cisco:asr_9006_router:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asr_9010_router:*:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:4.1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:cisco:ios_xr:4.1.0:*:*:*:*:*:*:*
- (no CPE)range: <4.1.1
- Range: <4.1.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.