CVE-2015-0681

{"id": "CVE-2015-0681", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-07-24T16:59:00.067", "references": [{"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-tftp", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-tftp/cvrf/cisco-sa-20150722-tftp_cvrf.xml", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id/1033023", "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)SVF4a, and 15.2(2)JB1 and IOS XE 2.5.x, 2.6.x, 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, and 3.5.xS before 3.6.0S; 3.1.xSG, 3.2.xSG, and 3.3.xSG before 3.4.0SG; 3.2.xSE before 3.3.0SE; 3.2.xXO before 3.3.0XO; 3.2.xSQ; 3.3.xSQ; and 3.4.xSQ allows remote attackers to cause a denial of service (device hang or reload) via multiple requests that trigger improper memory management, aka Bug ID CSCts66733."}, {"lang": "es", "value": "Vulnerabilidad en el Servidor TFTP de CISCO IOS en sus versiones 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)SVF4a y 15.2(2)JB1 y IOS XE 2.5.x, 2.6.x, 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS y 3.5.xS anteriores a la 3.6.0S; 3.1.xSG, 3.2.xSG y 3.3.xSG anteriores a la 3.4.0SG; 3.2.xSE anteriores a la 3.3.0SE; 3.2.xXO anteriores a la 3.3.0XO; 3.2.xSQ; 3.3.xSQ y 3.4.xSQ, permite a atacantes remotos causar una denegaci\u00f3n de servicio (colgado o recarga de dispositivo) a trav\u00e9s de m\u00faltiples peticiones que desencadenan la gesti\u00f3n inadecuada de la memoria, tambi\u00e9n conocido como Bug ID CSCts66733."}], "lastModified": "2017-09-21T01:29:01.070", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:12.2\\(33\\)xn1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E1F00A4-D2A7-4A61-8E74-ECDB879902D7"}, {"criteria": "cpe:2.3:o:cisco:ios:12.2\\(44\\)sq1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "742DA70E-6FF9-451D-9E62-F81EFB0BEB6C"}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(23\\)jy:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A22F1CF-D56B-4FFF-AA8F-6FF0C94D820D"}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(25e\\)jam1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30FFBD57-E751-42C8-AE89-CD2073F45688"}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(25e\\)jao5m:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4559FD34-EAAB-43C5-8AAD-801277C127D7"}, {"criteria": "cpe:2.3:o:cisco:ios:15.0\\(2\\)ed1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5D3C419-D1FF-45E8-A5B1-AFFC59567478"}, {"criteria": "cpe:2.3:o:cisco:ios:15.0\\(2\\)ey3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "054583DC-AAF8-4BF0-AC13-5A488476C161"}, {"criteria": "cpe:2.3:o:cisco:ios:15.1\\(3\\)svf4a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1AE36D6-372E-441E-B0D7-00F4CE74E72F"}, {"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)jb1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E15A69BF-50B6-42BE-9F44-7A7EBA28CC6D"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:2.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23AD1406-D2E4-4517-BF3E-A87C1FA8AC7E"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:2.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D203439-1A4B-4805-8A15-5A33C612A5B4"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:2.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2DC46EA-C766-4EBA-B686-29B3B23F0155"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:2.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71A41531-FBC0-41DD-9965-8CAFA30488AE"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:2.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "310BA9E3-8175-4220-9FC3-48390C994174"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:2.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B837418-4855-44BE-BA6F-0840864481A4"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6C871C9-3188-45A8-813D-20377636CB93"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48981190-4C87-48B8-918F-A8A9951254BA"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58ECBD42-D3C1-42E2-938B-D85BE56A198E"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D6A8329-2A58-446A-B3C1-21AA2BBD24AE"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4D44065-91B3-4BED-B0ED-572F97B2D0BC"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A4FDC07-F76A-4158-95A4-040FE29B14F4"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D8110BB-6112-4CD5-A7ED-8D0E4225B7FF"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1sg.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "068D8882-15FE-4DD6-A62B-5B10F62B7890"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1sg.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "672BF10B-7946-423F-829A-82202D0F645C"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA132110-6338-4958-A23F-E09058011181"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52D93563-1E49-4ED7-885D-35836F2545FB"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F2BF213-8DBB-4EB7-9D40-4F1DEB7034E5"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "913D878F-4F8C-4E8E-86D0-12D3BFC92425"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2se.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "680215C0-ED5B-402B-8A10-168D5E611032"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2se.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D37305F6-DD74-4306-AF94-C15C13935AAE"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2se.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "378430EC-78AD-49C2-B95D-164BD0027C4A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2se.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A38A062-EFA3-488A-96A2-D1037A26E457"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E399B247-2CE3-4A02-91B6-FCFBF5CF42D8"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4193288-86B2-496C-B630-CD98F964C590"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "31EEDEE1-CF08-4265-A75A-C3669C1F7EEE"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D717E09C-5956-4A5E-9781-0B98DC94340F"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74C796B0-FB8E-4489-B9FD-DF12FF7EDB9B"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4F62EF1-F885-4986-86F0-2AD2B116C3A5"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46DC7BC8-9951-47E1-9FCD-960B01B07AE7"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6ABF505F-4F50-49F3-9A20-9594F597150E"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8B57955-3C21-490B-876A-34E76C20FA17"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2sg.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CE579CE-FB44-4DFE-88B3-ADECE330173B"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2xo.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27AB8D26-B6B8-43BD-AB97-1525C7D1819E"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2xo.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5FF52C7-1BE8-4E7F-A864-B71CF7B48757"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3sg.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7796177-37FE-4E3D-A284-ED61EA827F1B"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3sg.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EB18BB6-42E1-4B0D-91BF-A7573AB305DA"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3sg.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A98BB4D6-3085-4391-98C8-D3DE12F014E2"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3sq.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2EEBFA75-089A-40D4-9416-9D327521F545"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3sq.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "313710E6-A246-473E-87A0-37EC2DC1571A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C223DFA6-C6CF-4F59-B7F0-F6B2AA0B108A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07C72438-15C6-499B-AA1E-3A8B4E7F38C8"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "417FAC04-E216-43EC-B909-BCF66C3C6506"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4s.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E49E63B-57B8-4DF0-A1BF-FADA3DC1F4B3"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4s.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85CAEF83-8350-4A27-A241-B5D9814BD58D"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4s.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "566F9E3C-47F2-4B61-90A2-8E08C4642503"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4s.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2E19C68-9055-4250-932A-5AE7EB23FA73"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4sq.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0C56274-D8FA-4ABE-A81A-9827DD39ACB0"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.4sq.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11F3DF00-5CE7-499F-A2FB-3D8AB020E0F4"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC6976C9-7FC4-41B2-B9D8-D6A23C0E7D04"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F0311A2-7D85-424F-84EC-42A037D1A145"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "045F7A51-41A4-424E-85DE-39BA4868DB73"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s_base:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "900F8EA7-23BA-4C59-AD07-AF056836ED0A"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}