Lucene search
HistoryJul 30, 2015 - 2:59 p.m.
CVE-2015-4293
cisco
ios xe
vulnerability
denial of service
cve-2015-4293
nvd
packet reassembly
cisco bug id cscuo37957
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.9 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.2%
The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957.
Affected configurations
Node
ciscoios_xeMatch2.1.0
ORciscoios_xeMatch2.1.1
ORciscoios_xeMatch2.1.2
ORciscoios_xeMatch2.2.1
ORciscoios_xeMatch2.2.2
ORciscoios_xeMatch2.2.3
ORciscoios_xeMatch2.3.0
ORciscoios_xeMatch2.3.0t
ORciscoios_xeMatch2.3.1t
ORciscoios_xeMatch2.3.2
ORciscoios_xeMatch2.4.0
ORciscoios_xeMatch2.4.1
ORciscoios_xeMatch2.5.0
ORciscoios_xeMatch2.5.1
ORciscoios_xeMatch2.5.2
ORciscoios_xeMatch2.6.0
ORciscoios_xeMatch2.6.1
ORciscoios_xeMatch2.6.2
ORciscoios_xeMatch3.10s.0
ORciscoios_xeMatch3.10s.0a
ORciscoios_xeMatch3.10s.1
ORciscoios_xeMatch3.10s.2
ORciscoios_xeMatch3.10s.3
ORciscoios_xeMatch3.11s.0
ORciscoios_xeMatch3.11s.1
ORciscoios_xeMatch3.11s.2
ORciscoios_xeMatch3.12s.0
ORciscoios_xeMatch3.12s.1
ORciscoios_xeMatch3.13s.0
Related
openvas
openvas
Cisco IOS-XE Fragmented Packet Resource Consumption Vulnerability
2016-05-10 00:00:00
cvelist
cvelist
CVE-2015-4293
2015-07-30 14:00:00
nvd
nvd
CVE-2015-4293
2015-07-30 14:59:00
prion
prion
Design/Logic Flaw
2015-07-30 14:59:00
cisco
cisco
Cisco IOS-XE Fragmented Packet Resource Consumption Vulnerability
2015-07-29 20:04:36
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.9 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.2%
Related for CVE-2015-4293