The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/viewAlert.x?alertId=40215 | Vendor Advisory |
http://www.securitytracker.com/id/1033122 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2015-07-30T14:00:00
Updated: 2015-08-14T16:57:05
Reserved: 2015-06-04T00:00:00
Link: CVE-2015-4293
JSON object: View
NVD Information
Status : Analyzed
Published: 2015-07-30T14:59:00.087
Modified: 2015-08-21T16:07:25.750
Link: CVE-2015-4293
JSON object: View
Redhat Information
No data.
CWE