Vulnerabilities > CVE-2015-6297 - Resource Management Errors vulnerability in Cisco IOS XR 5.2.0Base

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

cisco

CWE-399

NVD

Published: 2015-09-18

Updated: 2016-12-29

Summary

The DHCPv6 server in Cisco IOS on ASR 9000 devices with software 5.2.0 Base allows remote attackers to cause a denial of service (process reset) via crafted packets, aka Bug ID CSCun36525.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS XR 5.2.0_Base	1
Hardware	Cisco Cisco ASR 9001 - Cisco ASR 9006 - Cisco ASR 9010 - Cisco ASR 9904 - Cisco ASR 9912 - Cisco ASR 9922 -	6

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=41060
http://www.securitytracker.com/id/1033614