Details of VAR-201503-0156

ID

VAR-201503-0156

CVE

CVE-2015-0650

TITLE

Cisco IOS and IOS XE of Service Discovery Gateway Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2015-001956

DESCRIPTION

The Service Discovery Gateway (aka mDNS Gateway) in Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 3.9.xS and 3.10.xS before 3.10.4S, 3.11.xS before 3.11.3S, 3.12.xS before 3.12.2S, and 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) by sending malformed mDNS UDP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCup70579. Cisco IOS is a popular Internet operating system. Cisco IOS and IOS XE Software are prone to a remote denial-of-service vulnerability. Successful exploits may allow attackers to cause the device to reload, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCup70579. Service Discovery Gateway (also known as mDNS Gateway, multicast DNS) is a gateway used to provide how to use common DNS programming interfaces (package format and operation semantics) in a small network without DNS services. The following products and versions are affected: Cisco IOS Releases 12.2, 12.4, 15.0, 15.2, 15.3, 15.4 and IOS XE 3.9.xS, 3.10.xS prior to 3.10.4S, 3.11.xS prior to 3.11.3S Version, 3.12.xS version before 3.12.2S, 3.13.xS version before 3.13.1S

Trust: 2.61

sources: NVD: CVE-2015-0650 // JVNDB: JVNDB-2015-001956 // CNVD: CNVD-2015-02082 // BID: 73335 // VULHUB: VHN-78596 // VULMON: CVE-2015-0650

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2015-02082

AFFECTED PRODUCTS

vendor:	cisco	model:	ios	scope:	eq	version:	12.2	Trust: 3.0
vendor:	cisco	model:	ios	scope:	eq	version:	15.2	Trust: 2.4
vendor:	cisco	model:	ios	scope:	eq	version:	15.0	Trust: 2.4
vendor:	cisco	model:	ios	scope:	eq	version:	15.3	Trust: 2.4
vendor:	cisco	model:	ios	scope:	eq	version:	15.1	Trust: 2.4
vendor:	cisco	model:	ios	scope:	eq	version:	12.4	Trust: 2.4
vendor:	cisco	model:	ios	scope:	eq	version:	15.4	Trust: 2.4
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.13s.2	Trust: 1.6
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.13s.1	Trust: 1.6
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.12s.1	Trust: 1.6
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.10s.0	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.11s.2	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.9s.1	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.9s.2	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.11s.0	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.10s.2	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.9s.0	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.10s.3	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.13s.0	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.10s.1	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.12s.0	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.11s.1	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.10s.0a	Trust: 1.0
vendor:	cisco	model:	ios xe	scope:	lt	version:	3.13.xs	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	lt	version:	3.11.xs	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.13.1s	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	lt	version:	3.12.xs	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.11.3s	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.12.2s	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.9.xs	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	lt	version:	3.10.xs	Trust: 0.8
vendor:	cisco	model:	ios xe	scope:	eq	version:	3.10.4s	Trust: 0.8
vendor:	cisco	model:	ios	scope:	eq	version:	15.0-15.4	Trust: 0.6
vendor:	cisco	model:	ios xe 3.9.xs	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios xe 3.10.xs	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios xe 3.11.xs	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios xe 3.12.xs	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios xe 3.13.xs	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.4 sn1	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.4 sn	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.4 s	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.4 t1	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.4 t	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.4 s1	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.3 s2	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 15.2 e	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios xe 3.9s.2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.9s.1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.9s.0	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.13s.2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.13s.1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.13s.0	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.12s.1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.12s.0	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.10s.3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.10s.2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.10s.1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.10s.0a	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios xe 3.10s.0	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4sn	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4m	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4 m2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4 m1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4 m	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4 t2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.4 s2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3jnb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3jn	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3jab	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3ja	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 s3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 s2a	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 s1a	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 s1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 jnb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 jn	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 jab1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.3 ja1n	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2jb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2ex	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2e	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2 jb1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2 ex	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2 e3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2 e2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.2 e1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.1sy	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.1 sy3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.1 sy2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.1 sy1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.1 sy	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.0ed	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 15.0 ed1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.4jaz	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.4jap	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.4jam	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.4 jaz1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.4 jap1m	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.4 jam1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2sxi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2sq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2ire	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2ird	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2 sq1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2 sxi4b	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2 ire3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2 ird1	scope:	-	version:	-	Trust: 0.3

sources: CNVD: CNVD-2015-02082 // BID: 73335 // JVNDB: JVNDB-2015-001956 // CNNVD: CNNVD-201503-579 // NVD: CVE-2015-0650

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-0650
value:	HIGH
Trust: 1.0
NVD:	CVE-2015-0650
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2015-02082
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201503-579
value:	HIGH
Trust: 0.6
VULHUB:	VHN-78596
value:	HIGH
Trust: 0.1
VULMON:	CVE-2015-0650
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2015-0650
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2015-02082
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-78596
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CNVD: CNVD-2015-02082 // VULHUB: VHN-78596 // VULMON: CVE-2015-0650 // JVNDB: JVNDB-2015-001956 // CNNVD: CNNVD-201503-579 // NVD: CVE-2015-0650

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.9

sources: VULHUB: VHN-78596 // JVNDB: JVNDB-2015-001956 // NVD: CVE-2015-0650

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201503-579

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201503-579

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-001956

PATCH

title:	cisco-sa-20150325-mdns	url:	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-mdns	Trust: 0.8
title:	37820	url:	http://tools.cisco.com/security/center/viewAlert.x?alertId=37820	Trust: 0.8
title:	cisco-sa-20150325-mdns	url:	http://www.cisco.com/cisco/web/support/JP/112/1128/1128875_cisco-sa-20150325-mdns-j.html	Trust: 0.8
title:	Patch for Cisco IOS Service Discovery Gateway Denial of Service Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/56790	Trust: 0.6
title:	Cisco: Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability	url:	https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-20150325-mdns	Trust: 0.1

sources: CNVD: CNVD-2015-02082 // VULMON: CVE-2015-0650 // JVNDB: JVNDB-2015-001956

EXTERNAL IDS

db:	NVD	id:	CVE-2015-0650	Trust: 3.5
db:	SECTRACK	id:	1031979	Trust: 1.2
db:	JVNDB	id:	JVNDB-2015-001956	Trust: 0.8
db:	CNNVD	id:	CNNVD-201503-579	Trust: 0.7
db:	CNVD	id:	CNVD-2015-02082	Trust: 0.6
db:	BID	id:	73335	Trust: 0.4
db:	VULHUB	id:	VHN-78596	Trust: 0.1
db:	VULMON	id:	CVE-2015-0650	Trust: 0.1

sources: CNVD: CNVD-2015-02082 // VULHUB: VHN-78596 // VULMON: CVE-2015-0650 // BID: 73335 // JVNDB: JVNDB-2015-001956 // CNNVD: CNNVD-201503-579 // NVD: CVE-2015-0650

REFERENCES

url:	http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150325-mdns	Trust: 2.7
url:	http://www.securitytracker.com/id/1031979	Trust: 1.2
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0650	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0650	Trust: 0.8
url:	http://tools.cisco.com/security/center/viewalert.x?alertid=37820	Trust: 0.4
url:	http://www.cisco.com/	Trust: 0.3
url:	http://www.cisco.com/en/us/products/sw/iosswrel/products_ios_cisco_ios_software_category_home.html	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/20.html	Trust: 0.1
url:	https://www.rapid7.com/db/vulnerabilities/cisco-sa-20150325-mdns	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: CNVD: CNVD-2015-02082 // VULHUB: VHN-78596 // VULMON: CVE-2015-0650 // BID: 73335 // JVNDB: JVNDB-2015-001956 // CNNVD: CNNVD-201503-579 // NVD: CVE-2015-0650

CREDITS

Cisco

Trust: 0.3

sources: BID: 73335

SOURCES

db:	CNVD	id:	CNVD-2015-02082
db:	VULHUB	id:	VHN-78596
db:	VULMON	id:	CVE-2015-0650
db:	BID	id:	73335
db:	JVNDB	id:	JVNDB-2015-001956
db:	CNNVD	id:	CNNVD-201503-579
db:	NVD	id:	CVE-2015-0650

LAST UPDATE DATE

2024-11-23T21:44:26.129000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2015-02082	date:	2015-03-31T00:00:00
db:	VULHUB	id:	VHN-78596	date:	2015-09-04T00:00:00
db:	VULMON	id:	CVE-2015-0650	date:	2015-09-04T00:00:00
db:	BID	id:	73335	date:	2015-03-25T00:00:00
db:	JVNDB	id:	JVNDB-2015-001956	date:	2015-03-30T00:00:00
db:	CNNVD	id:	CNNVD-201503-579	date:	2015-03-27T00:00:00
db:	NVD	id:	CVE-2015-0650	date:	2024-11-21T02:23:28.430

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2015-02082	date:	2015-03-31T00:00:00
db:	VULHUB	id:	VHN-78596	date:	2015-03-26T00:00:00
db:	VULMON	id:	CVE-2015-0650	date:	2015-03-26T00:00:00
db:	BID	id:	73335	date:	2015-03-25T00:00:00
db:	JVNDB	id:	JVNDB-2015-001956	date:	2015-03-30T00:00:00
db:	CNNVD	id:	CNNVD-201503-579	date:	2015-03-27T00:00:00
db:	NVD	id:	CVE-2015-0650	date:	2015-03-26T10:59:14.990