ID
VAR-201504-0275
CVE
CVE-2015-0695
TITLE
Cisco ASR 9000 Runs on the device Cisco IOS XR Service disruption in (DoS) Vulnerabilities
Trust: 0.8
DESCRIPTION
Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attackers to cause a denial of service (chip and card hangs and reloads) by triggering use of a BVI interface for IPv4 packets, aka Bug ID CSCur62957. Vendors have confirmed this vulnerability Bug ID CSCur62957 It is released as. Supplementary information : CWE Vulnerability type by CWE-19: Data Handling ( Data processing ) Has been identified. Cisco IOS is the interconnected network operating system used on most Cisco system routers and network switches. A denial of service vulnerability exists in Cisco IOS XR Software. Allows an attacker to exploit this vulnerability to initiate a denial of service attack. The vulnerability is caused by the incorrect handling of the bridge-group virtual interface (BVI )flow
Trust: 2.52
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 5.1.1 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 5.2.0 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 5.2.1 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 5.1.2 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.3 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.1 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 5.1.0 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.0 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.2 | Trust: 1.6 |
| vendor: | cisco | model: | asr 9001 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9006 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9010 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9904 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9912 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9922 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.4 to 5.3.0 | Trust: 0.8 |
| vendor: | cisco | model: | ios xr software | scope: | - | version: | - | Trust: 0.6 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 5.2.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 5.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 5.1.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 5.1.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 4.3.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 4.3.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 4.3.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | eq | version: | 5.1 | Trust: 0.3 |
| vendor: | cisco | model: | asr 9001-s | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | cisco | model: | asr | scope: | eq | version: | 9001- | Trust: 0.3 |
| vendor: | cisco | model: | asr | scope: | eq | version: | 90000 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr software | scope: | ne | version: | 5.2.2 | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-19 | Trust: 1.1 |
| problemtype: | CWE-399 | Trust: 1.1 |
| problemtype: | CWE-Other | Trust: 0.8 |
THREAT TYPE
remote
Trust: 0.6
TYPE
resource management error
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | cisco-sa-20150415-iosxr | url: | http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150415-iosxr | Trust: 0.8 |
| title: | 38182 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=38182 | Trust: 0.8 |
| title: | Patch for Cisco IOS XR Software Denial of Service Vulnerability (CNVD-2015-02658) | url: | https://www.cnvd.org.cn/patchInfo/show/57647 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2015-0695 | Trust: 3.4 |
| db: | BID | id: | 74162 | Trust: 2.0 |
| db: | SECTRACK | id: | 1032139 | Trust: 1.1 |
| db: | JVNDB | id: | JVNDB-2015-002382 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201504-376 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2015-02658 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-78641 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150415-iosxr | Trust: 2.3 |
| url: | http://www.securityfocus.com/bid/74162 | Trust: 1.7 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0695 | Trust: 1.4 |
| url: | http://www.securitytracker.com/id/1032139 | Trust: 1.1 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0695 | Trust: 0.8 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
| url: | http://www.cisco.com/en/us/products/ps5845/index.html | Trust: 0.3 |
CREDITS
Cisco TAC
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2015-02658 |
| db: | VULHUB | id: | VHN-78641 |
| db: | BID | id: | 74162 |
| db: | JVNDB | id: | JVNDB-2015-002382 |
| db: | CNNVD | id: | CNNVD-201504-376 |
| db: | NVD | id: | CVE-2015-0695 |
LAST UPDATE DATE
2024-11-23T21:55:01.073000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2015-02658 | date: | 2015-04-22T00:00:00 |
| db: | VULHUB | id: | VHN-78641 | date: | 2017-01-06T00:00:00 |
| db: | BID | id: | 74162 | date: | 2015-05-12T19:51:00 |
| db: | JVNDB | id: | JVNDB-2015-002382 | date: | 2015-04-21T00:00:00 |
| db: | CNNVD | id: | CNNVD-201504-376 | date: | 2015-04-17T00:00:00 |
| db: | NVD | id: | CVE-2015-0695 | date: | 2024-11-21T02:23:33.193 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2015-02658 | date: | 2015-04-22T00:00:00 |
| db: | VULHUB | id: | VHN-78641 | date: | 2015-04-17T00:00:00 |
| db: | BID | id: | 74162 | date: | 2015-04-15T00:00:00 |
| db: | JVNDB | id: | JVNDB-2015-002382 | date: | 2015-04-21T00:00:00 |
| db: | CNNVD | id: | CNNVD-201504-376 | date: | 2015-04-17T00:00:00 |
| db: | NVD | id: | CVE-2015-0695 | date: | 2015-04-17T01:59:26.263 |