CVE-2015-0644

AppNav in Cisco IOS XE 3.8 through 3.10 before 3.10.3S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via a crafted TCP packet, aka Bug ID CSCuo53622.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe	Vendor Advisory
http://www.securitytracker.com/id/1031981

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:cisco:ios_xe:3.8s.0:::::::*
	cpe:2.3:o:cisco:ios_xe:3.8s.1:::::::*
	cpe:2.3:o:cisco:ios_xe:3.8s.2:::::::*
	cpe:2.3:o:cisco:ios_xe:3.8s_base:::::::*
	cpe:2.3:o:cisco:ios_xe:3.9s.0:::::::*
	cpe:2.3:o:cisco:ios_xe:3.9s.1:::::::*
	cpe:2.3:o:cisco:ios_xe:3.9s.2:::::::*
	cpe:2.3:o:cisco:ios_xe:3.10s.0:::::::*
	cpe:2.3:o:cisco:ios_xe:3.10s.0a:::::::*
	cpe:2.3:o:cisco:ios_xe:3.10s.1:::::::*
	cpe:2.3:o:cisco:ios_xe:3.10s.2:::::::*
	cpe:2.3:o:cisco:ios_xe:3.11s.0:::::::*
	cpe:2.3:o:cisco:ios_xe:3.11s.1:::::::*
	cpe:2.3:o:cisco:ios_xe:3.11s.2:::::::*
	cpe:2.3:o:cisco:ios_xe:3.12s.0:::::::*

History

No history.

Information

Published : 2015-03-26 10:59

Updated : 2024-02-28 12:20

NVD link : CVE-2015-0644

Mitre link : CVE-2015-0644

CVE.ORG link : CVE-2015-0644

JSON object : View

Products Affected

cisco

ios_xe

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2015-0644", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-03-26T10:59:09.847", "references": [{"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id/1031981", "source": "ykramarz@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "AppNav in Cisco IOS XE 3.8 through 3.10 before 3.10.3S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via a crafted TCP packet, aka Bug ID CSCuo53622."}, {"lang": "es", "value": "AppNav en Cisco IOS XE 3.8 hasta 3.10 anterior a 3.10.3S, 3.11 anterior a 3.11.3S, 3.12 anterior a 3.12.1S, 3.13 anterior a 3.13.0S, 3.14 anterior a 3.14.0S, y 3.15 anterior a 3.15.0S permite a atacantes remotos ejecutar c\u00f3digo arbitrario o causar una denegaci\u00f3n de servicio (recarga de dispositivo) a trav\u00e9s de un paquete TCP manipulado, tambi\u00e9n conocido como Bug ID CSCuo53622."}], "lastModified": "2015-09-04T18:55:13.630", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9A1B891-8AB7-493C-93FF-3D1FA5DFA19A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20BF8AA3-610B-4168-922D-2847958EFFA5"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E6BBADF-5DAF-41CE-B6CC-5D7E498E085B"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s_base:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06751A45-58D2-4C57-AD53-FA933D530A61"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEA1B7A4-6B48-4D0C-BA58-EE0E34DDB07E"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF17206A-27BA-4914-8BB5-4F031D88EA4A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEC4E92B-1752-438D-BF43-4D93938C6776"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C1C77A7-FCD5-4558-A351-081D6678DB21"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9B42071-2BAA-4459-B575-EBD72A111381"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24C948D8-C540-4FF1-A9F7-BFB20E5541FE"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7AF1294B-B4F6-40CC-A115-942B18CDA361"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0A98DFE-18FF-455A-AFA6-49960CB98C85"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "277C9543-A842-45AB-A2EF-DB2F8412D748"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C942D30-8344-425E-804E-E1BB1F1F0D22"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.12s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5E6FF1A-D90D-412A-8159-E766DC14FA57"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}