Cisco 6000/6500/7600 series systems with MSFC2 and a FlexWAN or OSM
module are affected.
Cisco 6000/6500/7600 series systems with MSFC2 that are running
12.1(8b)E14 are affected even if they do not have a FlexWAN or OSM
Cisco 6000/6500/7600 series systems with a Supervisor 720 are not
affected by this vulnerability.
The affected systems may be running Cisco IOS System Software or CatOS
The show module command can be used to
determine if there is a FlexWAN or OSM module on the system. A FlexWAN module
will have the part number WS-X6182-2PA. The OSM modules will have OSM in the
Refer to http://www.cisco.com/warp/public/473/96.html
for more information about determining the type of the the MSFC used on the
This vulnerability only affects Cisco 6000/6500/7600 series systems
with the specified hardware or software configuration. All other systems are
not affected by this vulnerability even though they may run affected versions
To determine the software running on a Cisco product, log in to the
device and issue the show version command to display the system banner. Cisco
IOS software will identify itself as "Internetwork Operating System Software"
or simply "IOS ®". On the next line of output, the
image name will be displayed between parentheses, followed by "Version" and the
IOS release name. Other Cisco devices will not have the show version command or
will give different output.
The following example identifies a Cisco product running IOS release
12.1(11b) E1 with an installed image name of C6MSFC2-JSV-M:
Cisco Internetwork Operating System Software IOS (tm)
MSFC2 Software (C6MSFC2-JSV-M), Version 12.1(11b)E1, EARLY DEPLOYMENT
RELEASE SOFTWARE (fc1)
No other Cisco products are currently known to be affected by this vulnerability.