CVE-2015-4203

Published: 23/06/2015 Updated: 28/12/2016

CVSS v2 Base Score: 5.4 | Impact Score: 6.9 | Exploitability Score: 4.9

VMScore: 481

Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

Race condition in Cisco IOS 12.2SCH in the Performance Routing Engine (PRE) module on uBR10000 devices, when NetFlow and an MPLS IPv6 VPN are configured, allows remote malicious users to cause a denial of service (PXF process crash) by sending malformed MPLS 6VPE packets quickly, aka Bug ID CSCud83396.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios 12.2sch
cisco ios 12.2\\(33\\)sch

A vulnerability in Cisco Universal Broadband Routers performing IPv6 VPN over Multiprotocol Label Switching (MPLS; 6VPE) and configured for NetFlow could allow an unauthenticated, remote attacker to cause a crash of the Parallel Express Forwarding (PXF) process on the Performance Routing Engine (PRE) module The vulnerability is due to a race cond ...

CWE-362 http://tools.cisco.com/security/center/viewAlert.x?alertId=39439 http://www.securityfocus.com/bid/75339 http://www.securitytracker.com/id/1032692 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150622-CVE-2015-4203

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-4203

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect