CVE-2015-0743

2015-05-3014:59:01

CWE-399

[email protected]

web.nvd.nist.gov

cve-2015-0743

cisco

headend system

denial of service

dhcp

tftp

udp

cscus04097

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.8%

JSON

Cisco Headend System Release allows remote attackers to cause a denial of service (DHCP and TFTP outage) via a flood of crafted UDP traffic, aka Bug ID CSCus04097.

Affected configurations

NVD

Node

ciscoheadend_digital_broadband_delivery_systemMatch-

ciscoheadend_system_releaseMatch2.5

ciscoheadend_system_releaseMatch2.7

ciscoheadend_system_releaseMatch3.2

ciscoheadend_system_releaseMatch3.5

ciscoheadend_system_releaseMatch3.7

ciscoheadend_system_releaseMatchi4.3

CPENameOperatorVersion
cisco:headend_digital_broadband_delivery_systemcisco headend digital broadband delivery systemeq-
cisco:headend_system_releasecisco headend system releaseeq2.5
cisco:headend_system_releasecisco headend system releaseeq2.7
cisco:headend_system_releasecisco headend system releaseeq3.2
cisco:headend_system_releasecisco headend system releaseeq3.5
cisco:headend_system_releasecisco headend system releaseeq3.7
cisco:headend_system_releasecisco headend system releaseeqi4.3

CPE	Name	Operator	Version
cisco:headend_digital_broadband_delivery_system	cisco headend digital broadband delivery system	eq	-
cisco:headend_system_release	cisco headend system release	eq	2.5
cisco:headend_system_release	cisco headend system release	eq	2.7
cisco:headend_system_release	cisco headend system release	eq	3.2
cisco:headend_system_release	cisco headend system release	eq	3.5
cisco:headend_system_release	cisco headend system release	eq	3.7
cisco:headend_system_release	cisco headend system release	eq	i4.3