Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.105676
Category:CISCO
Title:Cisco IOS XE Software IPv6 Neighbor Discovery Denial of Service Vulnerability
Summary:A vulnerability in the IPv6 neighbor discovery (ND) handling of Cisco IOS XE Software on; ASR platforms could allow an unauthenticated, adjacent attacker to cause an affected device to crash.
Description:Summary:
A vulnerability in the IPv6 neighbor discovery (ND) handling of Cisco IOS XE Software on
ASR platforms could allow an unauthenticated, adjacent attacker to cause an affected device to crash.

Vulnerability Insight:
The vulnerability is due to insufficient bounds on internal tables. An attacker could exploit this
vulnerability by flooding an adjacent IOS XE device with specific ND messages.

Vulnerability Impact:
An exploit could allow the attacker to deplete the available memory, possibly causing an affected device to crash.

Solution:
Cisco has released software updates that address these vulnerabilities. Workarounds that
mitigate these vulnerabilities are available.

CVSS Score:
6.1

CVSS Vector:
AV:A/AC:L/Au:N/C:N/I:N/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-6359
BugTraq ID: 79200
http://www.securityfocus.com/bid/79200
Cisco Security Advisory: 20151214 Cisco IOS XE Software IPv6 Neighbor Discovery Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151214-ios
http://www.securitytracker.com/id/1034432
CopyrightCopyright (C) 2016 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.