CVE-2015-4291

Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted series of fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCtd72617.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:cisco:ios_xe:2.1.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.1.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.1.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.2.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.2.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.2.3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.3.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.3.0t:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.3.1t:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.3.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.4.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.4.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:2.5.0:*:*:*:*:*:*:*

History

21 Nov 2024, 02:30

Type Values Removed Values Added
References () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150730-asr1k - Vendor Advisory () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150730-asr1k - Vendor Advisory
References () http://www.securitytracker.com/id/1033131 - () http://www.securitytracker.com/id/1033131 -

Information

Published : 2015-08-01 01:59

Updated : 2024-11-21 02:30


NVD link : CVE-2015-4291

Mitre link : CVE-2015-4291

CVE.ORG link : CVE-2015-4291


JSON object : View

Products Affected

cisco

  • ios_xe
CWE
CWE-399

Resource Management Errors