Sign-up

ID

VAR-201508-0095


CVE

CVE-2015-6268


TITLE

Cisco ASR 1000 Run on device Cisco IOS XE Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2015-004508

DESCRIPTION

Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted IPv4 UDP packet, aka Bug ID CSCsw95482. The Cisco ASR1000 Series Aggregation Services Router provides a WAN edge solution that combines information, communications, collaboration and business. The Cisco ASR 1000 Series Router has a security vulnerability in the processing of UDP packets. This allows the remote attacker to use the vulnerability to send special IPv4 packets. This can cause ESP to process packets and cause device overload. Cisco IOS XE Software is prone to a denial-of-service vulnerability. Attackers can exploit this issue to reload the affected device, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCsw95482

Trust: 2.52

sources: NVD: CVE-2015-6268 // JVNDB: JVNDB-2015-004508 // CNVD: CNVD-2015-05747 // BID: 76513 // VULHUB: VHN-84229

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2015-05747

AFFECTED PRODUCTS

vendor:ciscomodel:ios xescope:eqversion:2.2.2

Trust: 1.6

vendor:ciscomodel:ios xescope:eqversion:2.2.1

Trust: 1.6

vendor:ciscomodel:ios xescope:eqversion:2.2 .1

Trust: 0.8

vendor:ciscomodel:ios xescope:eqversion:2.2 .2

Trust: 0.8

vendor:ciscomodel:asrscope:eqversion:1000

Trust: 0.6

vendor:ciscomodel:ios xe softwarescope:eqversion:2.2.2

Trust: 0.3

vendor:ciscomodel:ios xe softwarescope:eqversion:2.2.1

Trust: 0.3

vendor:ciscomodel:asr series routersscope:eqversion:10000

Trust: 0.3

vendor:ciscomodel:ios xe softwarescope:neversion:2.3

Trust: 0.3

vendor:ciscomodel:ios xe softwarescope:neversion:2.2.3

Trust: 0.3

sources: CNVD: CNVD-2015-05747 // BID: 76513 // JVNDB: JVNDB-2015-004508 // CNNVD: CNNVD-201508-564 // NVD: CVE-2015-6268

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-6268
value: HIGH

Trust: 1.0

NVD: CVE-2015-6268
value: HIGH

Trust: 0.8

CNVD: CNVD-2015-05747
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201508-564
value: HIGH

Trust: 0.6

VULHUB: VHN-84229
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2015-6268
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2015-05747
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-84229
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2015-05747 // VULHUB: VHN-84229 // JVNDB: JVNDB-2015-004508 // CNNVD: CNNVD-201508-564 // NVD: CVE-2015-6268

PROBLEMTYPE DATA

problemtype:CWE-399

Trust: 1.9

sources: VULHUB: VHN-84229 // JVNDB: JVNDB-2015-004508 // NVD: CVE-2015-6268

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201508-564

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201508-564

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-004508

PATCH
title:40685url:http://tools.cisco.com/security/center/viewAlert.x?alertId=40685
Trust: 0.8
title:Patch for Cisco ASR 1000 Series Router UDP Packet Handling Denial of Service Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/63351
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2015-05747 // 
            
            
            
            JVNDB: JVNDB-2015-004508

EXTERNAL IDS
db:NVDid:CVE-2015-6268
Trust: 3.4
db:SECTRACKid:1033406
Trust: 1.1
db:JVNDBid:JVNDB-2015-004508
Trust: 0.8
db:CNVDid:CNVD-2015-05747
Trust: 0.6
db:CNNVDid:CNNVD-201508-564
Trust: 0.6
db:BIDid:76513
Trust: 0.4
db:VULHUBid:VHN-84229
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2015-05747 // 
            
            
            
            VULHUB: VHN-84229 // 
            
            
            
            BID: 76513 // 
            
            
            
            JVNDB: JVNDB-2015-004508 // 
            
            
            
            CNNVD: CNNVD-201508-564 // 
            
            
            
            NVD: CVE-2015-6268

REFERENCES
url:http://tools.cisco.com/security/center/viewalert.x?alertid=40685
Trust: 2.6
url:http://www.securitytracker.com/id/1033406
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6268
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6268
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
url:http://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2015-05747 // 
            
            
            
            VULHUB: VHN-84229 // 
            
            
            
            BID: 76513 // 
            
            
            
            JVNDB: JVNDB-2015-004508 // 
            
            
            
            CNNVD: CNNVD-201508-564 // 
            
            
            
            NVD: CVE-2015-6268

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 76513

SOURCES
db:CNVDid:CNVD-2015-05747
db:VULHUBid:VHN-84229
db:BIDid:76513
db:JVNDBid:JVNDB-2015-004508
db:CNNVDid:CNNVD-201508-564
db:NVDid:CVE-2015-6268

LAST UPDATE DATE
2024-11-23T22:18:23.333000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-05747date:2015-09-01T00:00:00
db:VULHUBid:VHN-84229date:2017-09-20T00:00:00
db:BIDid:76513date:2015-08-26T00:00:00
db:JVNDBid:JVNDB-2015-004508date:2015-09-01T00:00:00
db:CNNVDid:CNNVD-201508-564date:2015-09-10T00:00:00
db:NVDid:CVE-2015-6268date:2024-11-21T02:34:40.430

SOURCES RELEASE DATE
db:CNVDid:CNVD-2015-05747date:2015-09-01T00:00:00
db:VULHUBid:VHN-84229date:2015-08-29T00:00:00
db:BIDid:76513date:2015-08-26T00:00:00
db:JVNDBid:JVNDB-2015-004508date:2015-09-01T00:00:00
db:CNNVDid:CNNVD-201508-564date:2015-08-31T00:00:00
db:NVDid:CVE-2015-6268date:2015-08-29T01:59:01.517