CVE-2015-6273
First published: Sat Aug 29 2015(Updated: )
Cisco IOS XE before 3.1.2S on ASR 1000 devices mishandles the automatic setup of Virtual Fragment Reassembly (VFR) by certain firewall and NAT components, which allows remote attackers to cause a denial of service (Embedded Services Processor crash) via crafted IP packets, aka Bug IDs CSCtf87624, CSCte93229, CSCtd19103, and CSCti63623.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XE | =2.2.1 | |
| Cisco IOS XE | =2.2.2 | |
| Cisco IOS XE | =2.2.3 | |
| Cisco IOS XE | =3.1.0s | |
| Cisco IOS XE | =3.1.1s | |
| Cisco Asr 1001 | ||
| Cisco Asr 1001-x | ||
| Cisco Asr 1002 | ||
| Cisco Asr 1002-x | ||
| Cisco Asr 1004 | ||
| Cisco Asr 1006 | ||
| Cisco Asr 1013 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/cisco
- canonical/cisco ios xe
- version/cisco ios xe/2.2.1
- version/cisco ios xe/2.2.2
- version/cisco ios xe/2.2.3
- version/cisco ios xe/3.1.0s
- version/cisco ios xe/3.1.1s
- canonical/cisco asr 1001
- canonical/cisco asr 1001-x
- canonical/cisco asr 1002
- canonical/cisco asr 1002-x
- canonical/cisco asr 1004
- canonical/cisco asr 1006
- canonical/cisco asr 1013