The Zone-Based Firewall implementation in Cisco IOS 12.4(122)T and earlier does not properly manage session-object structures, which allows remote attackers to cause a denial of service (device reload) via crafted network traffic, aka Bug ID CSCul65003.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ios | Cisco | 15.4(1.12)t (including) | 15.4(1.12)t (including) |
| Ios | Cisco | 15.4(1.19)t (including) | 15.4(1.19)t (including) |
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0593
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37417
- http://www.securityfocus.com/bid/72549
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100757
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0593
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37417
- http://www.securityfocus.com/bid/72549
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100757