Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0650

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2015-0650
Last Modified 04 Sep 2015 02:57:35
Published 26 Mar 2015 06:59:14
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0650

Summary

The Service Discovery Gateway (aka mDNS Gateway) in Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 3.9.xS and 3.10.xS before 3.10.4S, 3.11.xS before 3.11.3S, 3.12.xS before 3.12.2S, and 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) by sending malformed mDNS UDP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCup70579.

Vulnerable Systems

Operating System

  • Cisco Ios 12.2

  • Cisco Ios 12.4

  • Cisco Ios 15.0

  • Cisco Ios 15.1

  • Cisco Ios 15.2

  • Cisco Ios 15.3

  • Cisco Ios 15.4

  • Cisco Ios Xe 3.10s.0

  • Cisco Ios Xe 3.10s.0a

  • Cisco Ios Xe 3.10s.1

  • Cisco Ios Xe 3.10s.2

  • Cisco Ios Xe 3.10s.3

  • Cisco Ios Xe 3.11s.0

  • Cisco Ios Xe 3.11s.1

  • Cisco Ios Xe 3.11s.2

  • Cisco Ios Xe 3.12s.0

  • Cisco Ios Xe 3.12s.1

  • Cisco Ios Xe 3.13s.0

  • Cisco Ios Xe 3.13s.1

  • Cisco Ios Xe 3.13s.2

  • Cisco Ios Xe 3.9s.0

  • Cisco Ios Xe 3.9s.1

  • Cisco Ios Xe 3.9s.2


References

CISCO - 20150325 Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability

SECTRACK - 1031979


Last Updated: 27 May 2016 11:08:14