Vulnerabilities > CVE-2016-1399 - Resource Management Errors vulnerability in Cisco IOS

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

cisco

CWE-399

NVD

Published: 2016-05-14

Updated: 2021-10-06

Summary

The packet-processing microcode in Cisco IOS 15.2(2)EA, 15.2(2)EA1, 15.2(2)EA2, and 15.2(4)EA on Industrial Ethernet 4000 devices and 15.2(2)EB and 15.2(2)EB1 on Industrial Ethernet 5000 devices allows remote attackers to cause a denial of service (packet data corruption) via crafted IPv4 ICMP packets, aka Bug ID CSCuy13431.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS 15.2\(2\)Eb Cisco IOS 15.2\(2\)Eb1 Cisco IOS 15.2\(2\)Ea Cisco IOS 15.2\(2\)Ea1	4
Hardware	Cisco Cisco IE 5000 12S12P 10G - Cisco IE 5000 16S12P - Cisco IE 4000 16Gt4G E - Cisco IE 4000 16T4G E - Cisco IE 4000 4Gc4Gp4G E - Cisco IE 4000 4Gs8Gp4G E - Cisco IE 4000 4S8P4G E - Cisco IE 4000 4T4P4G E - Cisco IE 4000 4Tc4G E - Cisco IE 4000 8Gs4G E - Cisco IE 4000 8Gt4G E - Cisco IE 4000 8Gt8Gp4G E - Cisco IE 4000 8S4G E - Cisco IE 4000 8T4G E -	14
Application	Cisco Cisco IOS 15.2\(2\)Ea2 Cisco IOS 15.2\(4\)Ea	2

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References