Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.105673
Category:CISCO
Title:Multiple Vulnerabilities in Cisco IOS Software and IOS XE Software Autonomic Networking Infrastructure
Summary:The Autonomic Networking Infrastructure (ANI) feature of Cisco IOS Software; and IOS XE Software has multiple vulnerabilities which could allow an unauthenticated, remote attacker to cause; a denial of service (DoS) condition or gain limited command and control of the device.;; Autonomic Networking Registration Authority Spoofing Vulnerability;; Autonomic Networking Infrastructure Spoofed Autonomic Networking Messages Denial of Service Vulnerability;; Autonomic Networking Infrastructure Device Reload Denial of Service Vulnerability;; Cisco has released software updates that address these vulnerabilities.;; Note: The March 25, 2015, Cisco IOS & XE Software Security Advisory bundled publication includes seven Cisco Security Advisories.; The advisories address vulnerabilities in Cisco IOS Software and Cisco IOS XE Software. Individual publication links are in Cisco Event; Response: Semiannual Cisco IOS & XE Software Security Advisory Bundled Publication at the referenced links.
Description:Summary:
The Autonomic Networking Infrastructure (ANI) feature of Cisco IOS Software
and IOS XE Software has multiple vulnerabilities which could allow an unauthenticated, remote attacker to cause
a denial of service (DoS) condition or gain limited command and control of the device.

Autonomic Networking Registration Authority Spoofing Vulnerability

Autonomic Networking Infrastructure Spoofed Autonomic Networking Messages Denial of Service Vulnerability

Autonomic Networking Infrastructure Device Reload Denial of Service Vulnerability

Cisco has released software updates that address these vulnerabilities.

Note: The March 25, 2015, Cisco IOS & XE Software Security Advisory bundled publication includes seven Cisco Security Advisories.
The advisories address vulnerabilities in Cisco IOS Software and Cisco IOS XE Software. Individual publication links are in Cisco Event
Response: Semiannual Cisco IOS & XE Software Security Advisory Bundled Publication at the referenced links.

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
9.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-0635
Cisco Security Advisory: 20150325 Multiple Vulnerabilities in Cisco IOS Software and IOS XE Software Autonomic Networking Infrastructure
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ani
http://www.securitytracker.com/id/1031982
Common Vulnerability Exposure (CVE) ID: CVE-2015-0636
Common Vulnerability Exposure (CVE) ID: CVE-2015-0637
CopyrightCopyright (C) 2016 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.