BugZero | Cisco BugID CSCvd26015 - NBAR DNS parser changes EDNS request packets

Cisco - Defect ID: CSCvd26015

NBAR DNS parser changes EDNS request packets

Cisco - Defect ID: CSCvd26015

NBAR DNS parser changes EDNS request packets

Last updated on 8/12/2024

Overall: 6.26.2

Severity: 6.46.4

Lifecycle: 9.19.1

Popularity: 66.0

What is the BugZero Risk Score?

Vendor details

No defect details.

Overall: 6.26.2

Severity: 6.46.4

Lifecycle: 9.19.1

Popularity: 66.0

What is the BugZero Risk Score?

Vendor details

No defect details.

Symptom

EDNS request packets are changed

Conditions

NBAR protocol discovery is enabled

Workaround

Disable DNS guard: no ip nbar classification dns learning guard

Further Problem Description

For EDNS (Extended DNS) request packets with additional records, the DNS header AR (additional record count) field is changed from 1 to 0, resulting in no response from the DNS server for these requests. To work around this issue, disable DNS guard.

Original Vendor Announcement

9.65Defect ID: CSCwd45843
Auth Step latency for policy evaluation due to Garbage Collection activity.
9.65Defect ID: CSCwa92734
CUBE DTMF interworking fails from rtp-nte to OOB SIP methods
9.65Defect ID: CSCwj45822
Cisco ASA and FTD Software Remote Access VPN Brute Force Denial of Service Vulnerability
9.65Defect ID: CSCvo03458
PKI "revocation check crl none" does not fallback if CRL not reachable
9.65Defect ID: CSCvq05584
Cisco IOS and IOS XE Software Tcl Arbitrary Code Execution Vulnerability

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Cisco - Defect ID: CSCvd26015

NBAR DNS parser changes EDNS request packets

Cisco - Defect ID: CSCvd26015

NBAR DNS parser changes EDNS request packets

Last updated on 8/12/2024

Vendor details

Vendor details

Description

Symptom

Conditions

Workaround

Further Problem Description

Links

Top Cisco defects by risk score

Ready to prevent the next vendor outage?