Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0609

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2015-0609
Last Modified 20 Feb 2015 10:02:20
Published 15 Feb 2015 07:59:05
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0609

Summary

Race condition in the Common Classification Engine (CCE) in the Measurement, Aggregation, and Correlation Engine (MACE) implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding (CEF) switching, aka Bug ID CSCuj96752.

Vulnerable Systems

Operating System

  • Cisco Ios 15.4%281%29t

  • Cisco Ios 15.4%281%29t1

  • Cisco Ios 15.4%281%29t2

  • Cisco Ios 15.4%281%29t3

  • Cisco Ios 15.4%281%29t4

  • Cisco Ios 15.4%282%29t

  • Cisco Ios 15.4%282%29t1

  • Cisco Ios 15.4%282%29t2

  • Cisco Ios 15.4%282%29t3

  • Cisco Ios 15.4t


References

CONFIRM - http://tools.cisco.com/security/center/viewAlert.x?alertId=37420

CISCO - 20150210 Cisco IOS Measurement, Aggregation, and Correlation Engine Denial of Service Vulnerability

XF - ciscoios-cve20150609-dos(100809)

SECTRACK - 1031731

BID - 72564


Last Updated: 27 May 2016 11:07:50