CVE-2015-0639

Cisco IOS XE 3.6-3.15 - Denial of Service via Malformed IPv6 Packets with IPv4 UDP Encapsulation

Title source: llm
STIX 2.1

Description

The Common Flow Table (CFT) feature in Cisco IOS XE 3.6 and 3.7 before 3.7.1S, 3.8 before 3.8.0S, 3.9 before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S, when MMON or NBAR is enabled, allows remote attackers to cause a denial of service (device reload) via malformed IPv6 packets with IPv4 UDP encapsulation, aka Bug ID CSCua79665.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031981

Scores

EPSS 0.0197
EPSS Percentile 78.0%

Details

CWE
CWE-20
Status published
Products (11)
cisco/ios_xe 3.6s
cisco/ios_xe 3.6s.0
cisco/ios_xe 3.6s.1
cisco/ios_xe 3.6s.2
cisco/ios_xe 3.7s
cisco/ios_xe 3.7s.0
cisco/ios_xe 3.7s.1
cisco/ios_xe 3.7s.2
cisco/ios_xe 3.7s.3
cisco/ios_xe 3.7s.4
... and 1 more
Published Mar 26, 2015
Tracked Since Feb 18, 2026