Vulnslist

find the latest Cisco vulnerabilities

Cisco ASR 9000 Series Aggregation Services Routers Denial of Service Vulnerability

Cisco-SA-20150918-CVE-2015-6301 · Medium · Published · Updated

A vulnerability in the DHCP version 6 (DHCPv6) server implementation of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.   The vulnerability is due to improper handling of certain DHCPv6 packets. An attacker could exploit this vulnerability by sending these DHCPv6 packets to be processed by an affected device. An exploit could allow the attacker to cause a reset of an affected process. Cisco has confirmed the vulnerability and released software updates. To exploit this vulnerability a remote attacker does not need to authenticate to pass the crafted DHCPv6 packets to the targeted device. This increases the likelihood of a possible exploit. Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.

Cisco advisory ·CSAF JSON

Workarounds

Administrators are advised to apply the appropriate updates.

Administrators are advised to allow only trusted users to have network access.

Administrators may consider using IP-based access control lists (ACLs) to allow only trusted systems to access the affected systems.

Administrators are advised to monitor affected systems.

CVEsCVE-2015-6301
Cisco Bug IDsNA
CVSS ScoreBase 5.0
Base 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P/E:F/RL:OF/RC:C
Product Names From Source
Cisco ASR 9000 Series Aggregation Services Routers

Related Products

Product CVE Evidence
Cisco RV Series Routers CVE-2015-6301 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2015-6301 Cisco OpenVuln
Cisco IOS Software CVE-2015-6301 Cisco OpenVuln
Cisco ASR 900 Series Aggregation Services Routers CVE-2015-6301 Cisco OpenVuln
Cisco IOS CVE-2015-6301 Cisco OpenVuln
Cisco ASR 9000 Series Aggregation Services Routers CVE-2015-6301 Cisco OpenVuln