Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0642

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2015-0642
Last Modified 04 Sep 2015 02:51:53
Published 26 Mar 2015 06:59:07
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0642

Summary

Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum36951.

Vulnerable Systems

Operating System

  • Cisco Ios 12.2

  • Cisco Ios 12.4

  • Cisco Ios 15.0

  • Cisco Ios 15.1

  • Cisco Ios 15.2

  • Cisco Ios 15.3

  • Cisco Ios 15.4

  • Cisco Ios Xe 2.5.0

  • Cisco Ios Xe 2.5.1

  • Cisco Ios Xe 3.10s.0

  • Cisco Ios Xe 3.10s.0a

  • Cisco Ios Xe 3.10s.1

  • Cisco Ios Xe 3.10s.2

  • Cisco Ios Xe 3.10s.3

  • Cisco Ios Xe 3.10s.4

  • Cisco Ios Xe 3.10s.5

  • Cisco Ios Xe 3.11s.0

  • Cisco Ios Xe 3.11s.1

  • Cisco Ios Xe 3.11s.2

  • Cisco Ios Xe 3.11s.3

  • Cisco Ios Xe 3.12s.0

  • Cisco Ios Xe 3.12s.1

  • Cisco Ios Xe 3.12s.2

  • Cisco Ios Xe 3.13s.0

  • Cisco Ios Xe 3.13s.1

  • Cisco Ios Xe 3.1s.0

  • Cisco Ios Xe 3.1s.1

  • Cisco Ios Xe 3.1s.2

  • Cisco Ios Xe 3.1s.3

  • Cisco Ios Xe 3.1s.4

  • Cisco Ios Xe 3.2s.0

  • Cisco Ios Xe 3.2s.1

  • Cisco Ios Xe 3.2s.2

  • Cisco Ios Xe 3.3s.0

  • Cisco Ios Xe 3.3s.1

  • Cisco Ios Xe 3.3s.2

  • Cisco Ios Xe 3.3sg.0

  • Cisco Ios Xe 3.3sg.1

  • Cisco Ios Xe 3.3sg.2

  • Cisco Ios Xe 3.3xo.0

  • Cisco Ios Xe 3.3xo.1

  • Cisco Ios Xe 3.3xo.2

  • Cisco Ios Xe 3.4s.0

  • Cisco Ios Xe 3.4s.1

  • Cisco Ios Xe 3.4s.2

  • Cisco Ios Xe 3.4s.3

  • Cisco Ios Xe 3.4s.4

  • Cisco Ios Xe 3.4s.5

  • Cisco Ios Xe 3.4s.6

  • Cisco Ios Xe 3.4sg.0

  • Cisco Ios Xe 3.4sg.1

  • Cisco Ios Xe 3.4sg.2

  • Cisco Ios Xe 3.4sg.3

  • Cisco Ios Xe 3.4sg.4

  • Cisco Ios Xe 3.4sg.5

  • Cisco Ios Xe 3.5e.0

  • Cisco Ios Xe 3.5e.1

  • Cisco Ios Xe 3.5e.2

  • Cisco Ios Xe 3.5e.3

  • Cisco Ios Xe 3.5s Base

  • Cisco Ios Xe 3.5s.0

  • Cisco Ios Xe 3.5s.1

  • Cisco Ios Xe 3.6e.0

  • Cisco Ios Xe 3.6e.1

  • Cisco Ios Xe 3.6s Base

  • Cisco Ios Xe 3.6s.0

  • Cisco Ios Xe 3.6s.1

  • Cisco Ios Xe 3.6s.2

  • Cisco Ios Xe 3.7e.0

  • Cisco Ios Xe 3.7s Base

  • Cisco Ios Xe 3.7s.0

  • Cisco Ios Xe 3.7s.1

  • Cisco Ios Xe 3.7s.2

  • Cisco Ios Xe 3.7s.3

  • Cisco Ios Xe 3.7s.4

  • Cisco Ios Xe 3.7s.5

  • Cisco Ios Xe 3.7s.6

  • Cisco Ios Xe 3.8s Base

  • Cisco Ios Xe 3.8s.0

  • Cisco Ios Xe 3.8s.1

  • Cisco Ios Xe 3.8s.2

  • Cisco Ios Xe 3.9s.0

  • Cisco Ios Xe 3.9s.1

  • Cisco Ios Xe 3.9s.2


References

CONFIRM - http://tools.cisco.com/security/center/viewAlert.x?alertId=37816

CISCO - 20150325 Cisco IOS Software and IOS XE Software Internet Key Exchange Version 2 Denial of Service Vulnerabilities

SECTRACK - 1031978


Last Updated: 27 May 2016 11:08:14