Vulnerabilities > CVE-2015-6574 - Resource Management Errors vulnerability in Sisco Ax-S4 Iccp Firmware and Mms-Ease Firmware
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP products allows remote attackers to cause a denial of service (CPU consumption) via a crafted packet.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 | |
| Hardware | 2 |
Common Weakness Enumeration (CWE)
References
- http://www.securityfocus.com/bid/95022
- http://www.securityfocus.com/bid/95022
- https://cert-portal.siemens.com/productcert/pdf/ssa-223771.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-223771.pdf
- https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2015-6574/
- https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2015-6574/
- https://www.sisconet.com/wp-content/uploads/2016/04/SecNote_CVE-2015-6574-Portcullis-20160426.pdf
- https://www.sisconet.com/wp-content/uploads/2016/04/SecNote_CVE-2015-6574-Portcullis-20160426.pdf