Code injection

2015-08-0101:59:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.0%

JSON

Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted series of fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCtd72617.

CPENameOperatorVersion
ios_xeeq2.5.0
ios_xeeq2.3.1116
ios_xeeq2.1.0
ios_xeeq2.2.3
ios_xeeq2.3.116
ios_xeeq2.2.1
ios_xeeq2.4.0
ios_xeeq2.3.0
ios_xeeq2.1.1
ios_xeeq2.4.1