Remote Denial of Service Vulnerability in Cisco ASR 5000 and 5500 Devices
CVE-2015-6334

Currently unrated

Key Information:

Vendor: Cisco
Status: Asr 5000 Software
Vendor: CVE Published:; 16 October 2015

Summary

Cisco ASR 5000 and 5500 devices are susceptible to a denial of service attack that can be triggered by sending specifically crafted headers within TACACS packets. When exploited, this vulnerability can lead to disruptions in service as the vpnmgr process is forced to restart, affecting network stability and performance. Administrators should apply the necessary patches to secure their devices against such attacks.

References

http://www.securitytracker.com/id/1033792

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Oct 16, 2015
Vulnerability Reserved
Aug 17, 2015