What is the severity of CVE-2016-6385?

CVE-2016-6385 has been classified as a high severity vulnerability due to the potential for remote attackers to cause denial of service by exploiting the memory leak.

How do I fix CVE-2016-6385?

To fix CVE-2016-6385, upgrade to the recommended versions of Cisco IOS and IOS XE that have patched this vulnerability.

What versions of Cisco IOS are affected by CVE-2016-6385?

CVE-2016-6385 affects Cisco IOS versions from 12.2 to 15.2 as well as specific versions of IOS XE from 3.2 to 3.8.

What type of attacks does CVE-2016-6385 allow?

CVE-2016-6385 allows attackers to conduct denial of service attacks through crafted image-list parameters via the Smart Install client.

Is there a workaround for CVE-2016-6385 if I can't update immediately?

A temporary workaround for CVE-2016-6385 includes disabling the Smart Install feature to mitigate potential exposure.

Vulnerability/
CVE-2016-6385

high

7.8

CWE

399

5/10/2016

6/8/2024

CVE-2016-6385

First published: Wed Oct 05 2016(Updated: )

Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.2 through 3.8 allows remote attackers to cause a denial of service (memory consumption) via crafted image-list parameters, aka Bug ID CSCuy82367.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS	=12.2\(35\)ex
Cisco IOS	=12.2\(35\)ex1
Cisco IOS	=12.2\(35\)ex2
Cisco IOS	=12.2\(35\)se
Cisco IOS	=12.2\(35\)se1
Cisco IOS	=12.2\(35\)se2
Cisco IOS	=12.2\(35\)se3
Cisco IOS	=12.2\(35\)se4
Cisco IOS	=12.2\(35\)se5
Cisco IOS	=12.2\(37\)ex
Cisco IOS	=12.2\(37\)ey
Cisco IOS	=12.2\(37\)se
Cisco IOS	=12.2\(37\)se1
Cisco IOS	=12.2\(40\)ex
Cisco IOS	=12.2\(40\)ex1
Cisco IOS	=12.2\(40\)ex2
Cisco IOS	=12.2\(40\)ex3
Cisco IOS	=12.2\(40\)se
Cisco IOS	=12.2\(40\)se1
Cisco IOS	=12.2\(40\)se2
Cisco IOS	=12.2\(44\)ex
Cisco IOS	=12.2\(44\)ex1
Cisco IOS	=12.2\(44\)ey
Cisco IOS	=12.2\(44\)se
Cisco IOS	=12.2\(44\)se1
Cisco IOS	=12.2\(44\)se2
Cisco IOS	=12.2\(44\)se3
Cisco IOS	=12.2\(44\)se4
Cisco IOS	=12.2\(44\)se5
Cisco IOS	=12.2\(44\)se6
Cisco IOS	=12.2\(46\)ex
Cisco IOS	=12.2\(46\)ey
Cisco IOS	=12.2\(46\)se
Cisco IOS	=12.2\(46\)se1
Cisco IOS	=12.2\(46\)se2
Cisco IOS	=12.2\(50\)se
Cisco IOS	=12.2\(50\)se1
Cisco IOS	=12.2\(50\)se2
Cisco IOS	=12.2\(50\)se3
Cisco IOS	=12.2\(50\)se4
Cisco IOS	=12.2\(50\)se5
Cisco IOS	=12.2\(52\)ex
Cisco IOS	=12.2\(52\)ex1
Cisco IOS	=12.2\(52\)se
Cisco IOS	=12.2\(52\)se1
Cisco IOS	=12.2\(53\)ex
Cisco IOS	=12.2\(53\)ey
Cisco IOS	=12.2\(53\)ez
Cisco IOS	=12.2\(53\)se
Cisco IOS	=12.2\(53\)se1
Cisco IOS	=12.2\(53\)se2
Cisco IOS	=12.2\(54\)se
Cisco IOS	=12.2\(55\)ex
Cisco IOS	=12.2\(55\)ex1
Cisco IOS	=12.2\(55\)ex2
Cisco IOS	=12.2\(55\)ex3
Cisco IOS	=12.2\(55\)ey
Cisco IOS	=12.2\(55\)ez
Cisco IOS	=12.2\(55\)se
Cisco IOS	=12.2\(55\)se1
Cisco IOS	=12.2\(55\)se2
Cisco IOS	=12.2\(55\)se3
Cisco IOS	=12.2\(55\)se4
Cisco IOS	=12.2\(55\)se5
Cisco IOS	=12.2\(55\)se6
Cisco IOS	=12.2\(55\)se7
Cisco IOS	=12.2\(55\)se8
Cisco IOS	=12.2\(55\)se9
Cisco IOS	=12.2\(55\)se10
Cisco IOS	=12.2\(58\)ex
Cisco IOS	=12.2\(58\)ey
Cisco IOS	=12.2\(58\)ey1
Cisco IOS	=12.2\(58\)ey2
Cisco IOS	=12.2\(58\)ez
Cisco IOS	=12.2\(58\)se
Cisco IOS	=12.2\(58\)se1
Cisco IOS	=12.2\(58\)se2
Cisco IOS	=12.2\(60\)ez
Cisco IOS	=12.2\(60\)ez1
Cisco IOS	=12.2\(60\)ez2
Cisco IOS	=12.2\(60\)ez3
Cisco IOS	=12.2\(60\)ez4
Cisco IOS	=12.2\(60\)ez5
Cisco IOS	=12.2\(60\)ez6
Cisco IOS	=12.2\(60\)ez7
Cisco IOS	=12.2\(60\)ez8
Cisco IOS	=15.0\(1\)ex
Cisco IOS	=15.0\(1\)ey
Cisco IOS	=15.0\(1\)ey1
Cisco IOS	=15.0\(1\)ey2
Cisco IOS	=15.0\(1\)se
Cisco IOS	=15.0\(1\)se1
Cisco IOS	=15.0\(1\)se2
Cisco IOS	=15.0\(1\)se3
Cisco IOS	=15.0\(2\)eb
Cisco IOS	=15.0\(2\)ec
Cisco IOS	=15.0\(2\)ed
Cisco IOS	=15.0\(2\)ed1
Cisco IOS	=15.0\(2\)eh
Cisco IOS	=15.0\(2\)ej
Cisco IOS	=15.0\(2\)ej1
Cisco IOS	=15.0\(2\)ek
Cisco IOS	=15.0\(2\)ek1
Cisco IOS	=15.0\(2\)ex
Cisco IOS	=15.0\(2\)ex1
Cisco IOS	=15.0\(2\)ex2
Cisco IOS	=15.0\(2\)ex3
Cisco IOS	=15.0\(2\)ex4
Cisco IOS	=15.0\(2\)ex5
Cisco IOS	=15.0\(2\)ex8
Cisco IOS	=15.0\(2\)ex10
Cisco IOS	=15.0\(2\)ey
Cisco IOS	=15.0\(2\)ey1
Cisco IOS	=15.0\(2\)ey2
Cisco IOS	=15.0\(2\)ey3
Cisco IOS	=15.0\(2\)ez
Cisco IOS	=15.0\(2\)se
Cisco IOS	=15.0\(2\)se1
Cisco IOS	=15.0\(2\)se2
Cisco IOS	=15.0\(2\)se3
Cisco IOS	=15.0\(2\)se4
Cisco IOS	=15.0\(2\)se5
Cisco IOS	=15.0\(2\)se6
Cisco IOS	=15.0\(2\)se7
Cisco IOS	=15.0\(2\)se9
Cisco IOS	=15.0\(2a\)ex5
Cisco IOS	=15.0\(2a\)se9
Cisco IOS	=15.1\(2\)sg
Cisco IOS	=15.1\(2\)sg1
Cisco IOS	=15.1\(2\)sg2
Cisco IOS	=15.1\(2\)sg3
Cisco IOS	=15.1\(2\)sg4
Cisco IOS	=15.1\(2\)sg5
Cisco IOS	=15.1\(2\)sg6
Cisco IOS	=15.1\(2\)sg7
Cisco IOS	=15.2\(1\)e
Cisco IOS	=15.2\(1\)e1
Cisco IOS	=15.2\(1\)e2
Cisco IOS	=15.2\(1\)e3
Cisco IOS	=15.2\(1\)ey
Cisco IOS	=15.2\(2\)e
Cisco IOS	=15.2\(2\)e1
Cisco IOS	=15.2\(2\)e2
Cisco IOS	=15.2\(2\)e4
Cisco IOS	=15.2\(2\)eb
Cisco IOS	=15.2\(2\)eb1
Cisco IOS	=15.2\(2\)eb2
Cisco IOS	=15.2\(2a\)e1
Cisco IOS	=15.2\(3\)e
Cisco IOS	=15.2\(3\)e1
Cisco IOS	=15.2\(3\)e2
Cisco IOS	=15.2\(3\)e3
Cisco IOS	=15.2\(3a\)e
Cisco IOS	=15.2\(3m\)e2
Cisco IOS	=15.2\(3m\)e3
Cisco IOS	=15.2\(4\)e
Cisco IOS	=15.2\(4\)e1
Cisco IOS	=15.2\(4m\)e1
Cisco IOS XE Software	=3.2.0ja
Cisco IOS XE Software	=3.2.0se
Cisco IOS XE Software	=3.2.1se
Cisco IOS XE Software	=3.2.2se
Cisco IOS XE Software	=3.2.3se
Cisco IOS XE Software	=3.3.0se
Cisco IOS XE Software	=3.3.0xo
Cisco IOS XE Software	=3.3.1se
Cisco IOS XE Software	=3.3.1xo
Cisco IOS XE Software	=3.3.2se
Cisco IOS XE Software	=3.3.2xo
Cisco IOS XE Software	=3.3.3se
Cisco IOS XE Software	=3.3.4se
Cisco IOS XE Software	=3.3.5se
Cisco IOS XE Software	=3.5.0e
Cisco IOS XE Software	=3.5.1e
Cisco IOS XE Software	=3.5.2e
Cisco IOS XE Software	=3.5.3e
Cisco IOS XE Software	=3.6.0e
Cisco IOS XE Software	=3.6.1e
Cisco IOS XE Software	=3.6.2ae
Cisco IOS XE Software	=3.6.2e
Cisco IOS XE Software	=3.6.3e
Cisco IOS XE Software	=3.6.4e
Cisco IOS XE Software	=3.7.0e
Cisco IOS XE Software	=3.7.1e
Cisco IOS XE Software	=3.7.2e
Cisco IOS XE Software	=3.7.3e
Cisco IOS XE Software	=3.7.5e
Cisco IOS XE Software	=3.8.0e
Cisco IOS XE Software	=3.8.1e
Cisco IOS XE Software	=3.8.2e

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6385?
CVE-2016-6385 has been classified as a high severity vulnerability due to the potential for remote attackers to cause denial of service by exploiting the memory leak.
How do I fix CVE-2016-6385?
To fix CVE-2016-6385, upgrade to the recommended versions of Cisco IOS and IOS XE that have patched this vulnerability.
What versions of Cisco IOS are affected by CVE-2016-6385?
CVE-2016-6385 affects Cisco IOS versions from 12.2 to 15.2 as well as specific versions of IOS XE from 3.2 to 3.8.
What type of attacks does CVE-2016-6385 allow?
CVE-2016-6385 allows attackers to conduct denial of service attacks through crafted image-list parameters via the Smart Install client.
Is there a workaround for CVE-2016-6385 if I can't update immediately?
A temporary workaround for CVE-2016-6385 includes disabling the Smart Install feature to mitigate potential exposure.

agent/type
agent/references
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/author
agent/severity
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco ios
version/cisco ios/12.2\(35\)ex
version/cisco ios/12.2\(35\)ex1
version/cisco ios/12.2\(35\)ex2
version/cisco ios/12.2\(35\)se
version/cisco ios/12.2\(35\)se1
version/cisco ios/12.2\(35\)se2
version/cisco ios/12.2\(35\)se3
version/cisco ios/12.2\(35\)se4
version/cisco ios/12.2\(35\)se5
version/cisco ios/12.2\(37\)ex
version/cisco ios/12.2\(37\)ey
version/cisco ios/12.2\(37\)se
version/cisco ios/12.2\(37\)se1
version/cisco ios/12.2\(40\)ex
version/cisco ios/12.2\(40\)ex1
version/cisco ios/12.2\(40\)ex2
version/cisco ios/12.2\(40\)ex3
version/cisco ios/12.2\(40\)se
version/cisco ios/12.2\(40\)se1
version/cisco ios/12.2\(40\)se2
version/cisco ios/12.2\(44\)ex
version/cisco ios/12.2\(44\)ex1
version/cisco ios/12.2\(44\)ey
version/cisco ios/12.2\(44\)se
version/cisco ios/12.2\(44\)se1
version/cisco ios/12.2\(44\)se2
version/cisco ios/12.2\(44\)se3
version/cisco ios/12.2\(44\)se4
version/cisco ios/12.2\(44\)se5
version/cisco ios/12.2\(44\)se6
version/cisco ios/12.2\(46\)ex
version/cisco ios/12.2\(46\)ey
version/cisco ios/12.2\(46\)se
version/cisco ios/12.2\(46\)se1
version/cisco ios/12.2\(46\)se2
version/cisco ios/12.2\(50\)se
version/cisco ios/12.2\(50\)se1
version/cisco ios/12.2\(50\)se2
version/cisco ios/12.2\(50\)se3
version/cisco ios/12.2\(50\)se4
version/cisco ios/12.2\(50\)se5
version/cisco ios/12.2\(52\)ex
version/cisco ios/12.2\(52\)ex1
version/cisco ios/12.2\(52\)se
version/cisco ios/12.2\(52\)se1
version/cisco ios/12.2\(53\)ex
version/cisco ios/12.2\(53\)ey
version/cisco ios/12.2\(53\)ez
version/cisco ios/12.2\(53\)se
version/cisco ios/12.2\(53\)se1
version/cisco ios/12.2\(53\)se2
version/cisco ios/12.2\(54\)se
version/cisco ios/12.2\(55\)ex
version/cisco ios/12.2\(55\)ex1
version/cisco ios/12.2\(55\)ex2
version/cisco ios/12.2\(55\)ex3
version/cisco ios/12.2\(55\)ey
version/cisco ios/12.2\(55\)ez
version/cisco ios/12.2\(55\)se
version/cisco ios/12.2\(55\)se1
version/cisco ios/12.2\(55\)se2
version/cisco ios/12.2\(55\)se3
version/cisco ios/12.2\(55\)se4
version/cisco ios/12.2\(55\)se5
version/cisco ios/12.2\(55\)se6
version/cisco ios/12.2\(55\)se7
version/cisco ios/12.2\(55\)se8
version/cisco ios/12.2\(55\)se9
version/cisco ios/12.2\(55\)se10
version/cisco ios/12.2\(58\)ex
version/cisco ios/12.2\(58\)ey
version/cisco ios/12.2\(58\)ey1
version/cisco ios/12.2\(58\)ey2
version/cisco ios/12.2\(58\)ez
version/cisco ios/12.2\(58\)se
version/cisco ios/12.2\(58\)se1
version/cisco ios/12.2\(58\)se2
version/cisco ios/12.2\(60\)ez
version/cisco ios/12.2\(60\)ez1
version/cisco ios/12.2\(60\)ez2
version/cisco ios/12.2\(60\)ez3
version/cisco ios/12.2\(60\)ez4
version/cisco ios/12.2\(60\)ez5
version/cisco ios/12.2\(60\)ez6
version/cisco ios/12.2\(60\)ez7
version/cisco ios/12.2\(60\)ez8
version/cisco ios/15.0\(1\)ex
version/cisco ios/15.0\(1\)ey
version/cisco ios/15.0\(1\)ey1
version/cisco ios/15.0\(1\)ey2
version/cisco ios/15.0\(1\)se
version/cisco ios/15.0\(1\)se1
version/cisco ios/15.0\(1\)se2
version/cisco ios/15.0\(1\)se3
version/cisco ios/15.0\(2\)eb
version/cisco ios/15.0\(2\)ec
version/cisco ios/15.0\(2\)ed
version/cisco ios/15.0\(2\)ed1
version/cisco ios/15.0\(2\)eh
version/cisco ios/15.0\(2\)ej
version/cisco ios/15.0\(2\)ej1
version/cisco ios/15.0\(2\)ek
version/cisco ios/15.0\(2\)ek1
version/cisco ios/15.0\(2\)ex
version/cisco ios/15.0\(2\)ex1
version/cisco ios/15.0\(2\)ex2
version/cisco ios/15.0\(2\)ex3
version/cisco ios/15.0\(2\)ex4
version/cisco ios/15.0\(2\)ex5
version/cisco ios/15.0\(2\)ex8
version/cisco ios/15.0\(2\)ex10
version/cisco ios/15.0\(2\)ey
version/cisco ios/15.0\(2\)ey1
version/cisco ios/15.0\(2\)ey2
version/cisco ios/15.0\(2\)ey3
version/cisco ios/15.0\(2\)ez
version/cisco ios/15.0\(2\)se
version/cisco ios/15.0\(2\)se1
version/cisco ios/15.0\(2\)se2
version/cisco ios/15.0\(2\)se3
version/cisco ios/15.0\(2\)se4
version/cisco ios/15.0\(2\)se5
version/cisco ios/15.0\(2\)se6
version/cisco ios/15.0\(2\)se7
version/cisco ios/15.0\(2\)se9
version/cisco ios/15.0\(2a\)ex5
version/cisco ios/15.0\(2a\)se9
version/cisco ios/15.1\(2\)sg
version/cisco ios/15.1\(2\)sg1
version/cisco ios/15.1\(2\)sg2
version/cisco ios/15.1\(2\)sg3
version/cisco ios/15.1\(2\)sg4
version/cisco ios/15.1\(2\)sg5
version/cisco ios/15.1\(2\)sg6
version/cisco ios/15.1\(2\)sg7
version/cisco ios/15.2\(1\)e
version/cisco ios/15.2\(1\)e1
version/cisco ios/15.2\(1\)e2
version/cisco ios/15.2\(1\)e3
version/cisco ios/15.2\(1\)ey
version/cisco ios/15.2\(2\)e
version/cisco ios/15.2\(2\)e1
version/cisco ios/15.2\(2\)e2
version/cisco ios/15.2\(2\)e4
version/cisco ios/15.2\(2\)eb
version/cisco ios/15.2\(2\)eb1
version/cisco ios/15.2\(2\)eb2
version/cisco ios/15.2\(2a\)e1
version/cisco ios/15.2\(3\)e
version/cisco ios/15.2\(3\)e1
version/cisco ios/15.2\(3\)e2
version/cisco ios/15.2\(3\)e3
version/cisco ios/15.2\(3a\)e
version/cisco ios/15.2\(3m\)e2
version/cisco ios/15.2\(3m\)e3
version/cisco ios/15.2\(4\)e
version/cisco ios/15.2\(4\)e1
version/cisco ios/15.2\(4m\)e1
canonical/cisco ios xe
version/cisco ios xe/3.2.0ja
version/cisco ios xe/3.2.0se
version/cisco ios xe/3.2.1se
version/cisco ios xe/3.2.2se
version/cisco ios xe/3.2.3se
version/cisco ios xe/3.3.0se
version/cisco ios xe/3.3.0xo
version/cisco ios xe/3.3.1se
version/cisco ios xe/3.3.1xo
version/cisco ios xe/3.3.2se
version/cisco ios xe/3.3.2xo
version/cisco ios xe/3.3.3se
version/cisco ios xe/3.3.4se
version/cisco ios xe/3.3.5se
version/cisco ios xe/3.5.0e
version/cisco ios xe/3.5.1e
version/cisco ios xe/3.5.2e
version/cisco ios xe/3.5.3e
version/cisco ios xe/3.6.0e
version/cisco ios xe/3.6.1e
version/cisco ios xe/3.6.2ae
version/cisco ios xe/3.6.2e
version/cisco ios xe/3.6.3e
version/cisco ios xe/3.6.4e
version/cisco ios xe/3.7.0e
version/cisco ios xe/3.7.1e
version/cisco ios xe/3.7.2e
version/cisco ios xe/3.7.3e
version/cisco ios xe/3.7.5e
version/cisco ios xe/3.8.0e
version/cisco ios xe/3.8.1e
version/cisco ios xe/3.8.2e