Denial of Service Vulnerability in Cisco ASR 5000 Devices
CVE-2015-6256

Currently unrated

Key Information:

Vendor: Cisco
Status: Asr 5000 Series Software
Vendor: CVE Published:; 22 August 2015

What is CVE-2015-6256?

A vulnerability exists in Cisco ASR 5000 devices running software version 19.0.M0.60828, which allows remote attackers to exploit crafted length fields within OSPF packet headers. Successful exploitation leads to the denial of service condition, causing the OSPF process to restart and potentially compromising the network's stability.

References

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1033355

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 22, 2015
Vulnerability Reserved
Aug 17, 2015