CVE-2018-0136
Description
Cisco IOS XR Software Release 5.3.4 on ASR 9000 Series with Trident line cards crashes when handling IPv6 packets with fragment header extension, causing DoS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco IOS XR Software Release 5.3.4 on ASR 9000 Series with Trident line cards crashes when handling IPv6 packets with fragment header extension, causing DoS.
Vulnerability
A vulnerability in the IPv6 subsystem of Cisco IOS XR Software Release 5.3.4 for the Cisco Aggregation Services Router (ASR) 9000 Series could allow an unauthenticated, remote attacker to trigger a reload of one or more Trident-based line cards, resulting in a denial of service (DoS) condition [1]. The issue is due to incorrect handling of IPv6 packets with a fragment header extension. The vulnerability exists only when the router is running Cisco IOS XR Software Release 5.3.4 and has Trident-based line cards with IPv6 configured [1].
Exploitation
An unauthenticated, remote attacker can exploit this vulnerability by sending specially crafted IPv6 packets either to or through the Trident-based line card [1]. No authentication or prior access is required; the attacker only needs network connectivity to the affected device.
Impact
A successful exploit triggers a reload of the Trident-based line card(s), causing a denial of service condition during the time the line card takes to restart [1]. The control plane and other line cards may remain operational, but traffic traversing the affected line card is disrupted.
Mitigation
Cisco has made a software maintenance upgrade (SMU) available that addresses this vulnerability. The fix has also been incorporated into service pack 7 for Cisco IOS XR Software Release 5.3.4 [1]. Administrators are advised to upgrade to the fixed software version. No workarounds are mentioned in the advisory.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: = 5.3.4
- Range: = IOS XR 5.3.4
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
3- www.securityfocus.com/bid/102905mitrevdb-entryx_refsource_BID
- www.securitytracker.com/id/1040315mitrevdb-entryx_refsource_SECTRACK
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180131-ipv6mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.