Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0608

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2015-0608
Last Modified 20 Feb 2015 10:02:19
Published 11 Feb 2015 08:59:25
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0608

Summary

Race condition in the Measurement, Aggregation, and Correlation Engine (MACE) implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding (CEF) switching, aka Bug ID CSCul48736.

Vulnerable Systems

Operating System

  • Cisco Ios 15.4%281%29t

  • Cisco Ios 15.4%281%29t1

  • Cisco Ios 15.4%281%29t2

  • Cisco Ios 15.4%281%29t3

  • Cisco Ios 15.4%281%29t4

  • Cisco Ios 15.4%282%29t

  • Cisco Ios 15.4%282%29t1

  • Cisco Ios 15.4%282%29t2

  • Cisco Ios 15.4%282%29t3

  • Cisco Ios 15.4t


References

CONFIRM - http://tools.cisco.com/security/center/viewAlert.x?alertId=37421

CISCO - 20150210 Cisco IOS Measurement, Aggregation, and Correlation Engine Denial of Service Vulnerability

XF - ciscoios-cve20150608-dos(100808)

BID - 72566

SECTRACK - 1031731


Last Updated: 27 May 2016 11:07:47