Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0645

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2015-0645
Last Modified 04 Sep 2015 02:57:06
Published 26 Mar 2015 06:59:10
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0645

Summary

The Layer 4 Redirect (L4R) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.2S, 3.13 before 3.13.1S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuq59131.

Vulnerable Systems

Operating System

  • Cisco Ios Xe 3.10s.0

  • Cisco Ios Xe 3.10s.0a

  • Cisco Ios Xe 3.10s.1

  • Cisco Ios Xe 3.10s.2

  • Cisco Ios Xe 3.10s.3

  • Cisco Ios Xe 3.11s.0

  • Cisco Ios Xe 3.11s.1

  • Cisco Ios Xe 3.11s.2

  • Cisco Ios Xe 3.12s.0

  • Cisco Ios Xe 3.12s.1

  • Cisco Ios Xe 3.13s.0

  • Cisco Ios Xe 3.1s.0

  • Cisco Ios Xe 3.1s.1

  • Cisco Ios Xe 3.1s.2

  • Cisco Ios Xe 3.1s.3

  • Cisco Ios Xe 3.1s.4

  • Cisco Ios Xe 3.1s.5

  • Cisco Ios Xe 3.1s.6

  • Cisco Ios Xe 3.2s.0

  • Cisco Ios Xe 3.2s.1

  • Cisco Ios Xe 3.2s.2

  • Cisco Ios Xe 3.2s.3

  • Cisco Ios Xe 3.3s.0

  • Cisco Ios Xe 3.3s.1

  • Cisco Ios Xe 3.3s.2

  • Cisco Ios Xe 3.4s.0

  • Cisco Ios Xe 3.4s.1

  • Cisco Ios Xe 3.4s.2

  • Cisco Ios Xe 3.4s.3

  • Cisco Ios Xe 3.4s.4

  • Cisco Ios Xe 3.4s.5

  • Cisco Ios Xe 3.4s.6

  • Cisco Ios Xe 3.5s Base

  • Cisco Ios Xe 3.5s.0

  • Cisco Ios Xe 3.5s.1

  • Cisco Ios Xe 3.5s.2

  • Cisco Ios Xe 3.6s Base

  • Cisco Ios Xe 3.6s.0

  • Cisco Ios Xe 3.6s.1

  • Cisco Ios Xe 3.6s.2


References

CISCO - 20150325 Multiple Vulnerabilities in Cisco IOS XE Software for Cisco ASR 1000 Series, Cisco ISR 4400 Series, and Cisco Cloud Services 1000v Series Routers

SECTRACK - 1031981


Last Updated: 27 May 2016 11:08:14