ID
VAR-201507-0518
CVE
CVE-2015-4293
TITLE
Cisco IOS XE Denial of service in the implementation of packet reassembly (DoS) Vulnerabilities
Trust: 0.8
DESCRIPTION
The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957. Cisco IOS XE is an operating system developed by Cisco Systems for its network devices. This vulnerability is caused by an ATTN-3-SYNC_TIMEOUT error message sent to the console and system logs when the program execution fragment packet reassembly fails. An attacker can exploit this issue to consume CPU resources and cause a denial-of-service condition. This issue is being tracked by Cisco Bug ID CSCuo37957
Trust: 2.52
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.6.2 | Trust: 1.9 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.6.1 | Trust: 1.9 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.10s.1 | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.13s.0 | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.10s.0a | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.10s.2 | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.12s.0 | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.11s.2 | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.10s.0 | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.12s.1 | Trust: 1.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.5.2 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.5.1 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.4.1 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.3.2 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.2.3 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.2.1 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.1.1 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.6.0 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.5.0 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.3.0 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.2.2 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.1.2 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.1.0 | Trust: 1.3 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.11s.0 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.3.1t | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.10s.3 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.3.0t | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.4.0 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 3.11s.1 | Trust: 1.0 |
| vendor: | cisco | model: | ios xe | scope: | lte | version: | 3.13s | Trust: 0.8 |
| vendor: | cisco | model: | ios xe <=3.13s | scope: | - | version: | - | Trust: 0.6 |
| vendor: | cisco | model: | ios xe | scope: | eq | version: | 2.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xe t | scope: | eq | version: | 2.3.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.13s.0 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.12s.1 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.12s.0 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.11s.2 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.11s.1 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.11s.0 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.10s.3 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.10s.2 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.10s.1 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.10s.0a | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 3.10s.0 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios xe 2.3.0t | scope: | - | version: | - | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-399 | Trust: 1.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
resource management error
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | 40215 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=40215 | Trust: 0.8 |
| title: | Patch for Cisco IOS XE Denial of Service Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/61888 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2015-4293 | Trust: 3.4 |
| db: | SECTRACK | id: | 1033122 | Trust: 1.1 |
| db: | BID | id: | 76101 | Trust: 1.0 |
| db: | JVNDB | id: | JVNDB-2015-003948 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201507-823 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2015-05096 | Trust: 0.6 |
| db: | SEEBUG | id: | SSVID-89247 | Trust: 0.1 |
| db: | VULHUB | id: | VHN-82254 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/viewalert.x?alertid=40215 | Trust: 2.6 |
| url: | http://www.securitytracker.com/id/1033122 | Trust: 1.1 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-4293 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-4293 | Trust: 0.8 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2015-05096 |
| db: | VULHUB | id: | VHN-82254 |
| db: | BID | id: | 76101 |
| db: | JVNDB | id: | JVNDB-2015-003948 |
| db: | CNNVD | id: | CNNVD-201507-823 |
| db: | NVD | id: | CVE-2015-4293 |
LAST UPDATE DATE
2024-11-23T22:08:02.328000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2015-05096 | date: | 2015-08-04T00:00:00 |
| db: | VULHUB | id: | VHN-82254 | date: | 2015-08-21T00:00:00 |
| db: | BID | id: | 76101 | date: | 2015-07-29T00:00:00 |
| db: | JVNDB | id: | JVNDB-2015-003948 | date: | 2015-08-03T00:00:00 |
| db: | CNNVD | id: | CNNVD-201507-823 | date: | 2015-08-06T00:00:00 |
| db: | NVD | id: | CVE-2015-4293 | date: | 2024-11-21T02:30:47.053 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2015-05096 | date: | 2015-08-04T00:00:00 |
| db: | VULHUB | id: | VHN-82254 | date: | 2015-07-30T00:00:00 |
| db: | BID | id: | 76101 | date: | 2015-07-29T00:00:00 |
| db: | JVNDB | id: | JVNDB-2015-003948 | date: | 2015-08-03T00:00:00 |
| db: | CNNVD | id: | CNNVD-201507-823 | date: | 2015-07-31T00:00:00 |
| db: | NVD | id: | CVE-2015-4293 | date: | 2015-07-30T14:59:00.087 |