CVE-2015-0688

Cisco IOS XE 3.10.2S on an ASR 1000 device with an Embedded Services Processor (ESP) module, when NAT is enabled, allows remote attackers to cause a denial of service (module crash) via malformed H.323 packets, aka Bug ID CSCup21070.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:cisco:ios_xe:13.10.2s:*:*:*:*:*:*:*
OR cpe:2.3:h:cisco:asr_1001:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_1001-x:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_1002:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_1002-x:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_1004:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_1006:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_1013:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:23

Type Values Removed Values Added
References () http://tools.cisco.com/security/center/viewAlert.x?alertId=38210 - Vendor Advisory () http://tools.cisco.com/security/center/viewAlert.x?alertId=38210 - Vendor Advisory
References () http://www.securitytracker.com/id/1032023 - () http://www.securitytracker.com/id/1032023 -

Information

Published : 2015-04-04 01:59

Updated : 2024-11-21 02:23


NVD link : CVE-2015-0688

Mitre link : CVE-2015-0688

CVE.ORG link : CVE-2015-0688


JSON object : View

Products Affected

cisco

  • asr_1006
  • asr_1001
  • asr_1004
  • asr_1002-x
  • asr_1001-x
  • asr_1013
  • asr_1002
  • ios_xe
CWE
CWE-399

Resource Management Errors