A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap overflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1 packets are not properly reassembled. An attacker could exploit this vulnerability by sending crafted UDP packets to an affected system. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Note: Only traffic that is directed to the affected system can be used to exploit this vulnerability. This vulnerability can be triggered by IPv4 and IPv6 traffic.
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ios | Cisco | 15.1(2)sg8 (including) | 15.1(2)sg8 (including) |
Ios | Cisco | 15.1(2)sy8 (including) | 15.1(2)sy8 (including) |
Ios | Cisco | 15.1(2)sy9 (including) | 15.1(2)sy9 (including) |
Ios | Cisco | 15.1(2)sy10 (including) | 15.1(2)sy10 (including) |
Ios | Cisco | 15.1(2)sy11 (including) | 15.1(2)sy11 (including) |
Ios | Cisco | 15.1(2)sy12 (including) | 15.1(2)sy12 (including) |
Ios | Cisco | 15.1(2)sy13 (including) | 15.1(2)sy13 (including) |
Ios | Cisco | 15.1(2)sy14 (including) | 15.1(2)sy14 (including) |
Ios | Cisco | 15.1(2)sy15 (including) | 15.1(2)sy15 (including) |
Ios | Cisco | 15.1(2)sy16 (including) | 15.1(2)sy16 (including) |
Ios | Cisco | 15.2(1)sy3 (including) | 15.2(1)sy3 (including) |
Ios | Cisco | 15.2(1)sy4 (including) | 15.2(1)sy4 (including) |
Ios | Cisco | 15.2(1)sy5 (including) | 15.2(1)sy5 (including) |
Ios | Cisco | 15.2(1)sy6 (including) | 15.2(1)sy6 (including) |
Ios | Cisco | 15.2(1)sy7 (including) | 15.2(1)sy7 (including) |
Ios | Cisco | 15.2(1)sy8 (including) | 15.2(1)sy8 (including) |
Ios | Cisco | 15.2(3)e4 (including) | 15.2(3)e4 (including) |
Ios | Cisco | 15.2(3)e5 (including) | 15.2(3)e5 (including) |
Ios | Cisco | 15.2(4)e2 (including) | 15.2(4)e2 (including) |
Ios | Cisco | 15.2(4)e3 (including) | 15.2(4)e3 (including) |
Ios | Cisco | 15.2(4)e4 (including) | 15.2(4)e4 (including) |
Ios | Cisco | 15.2(4)e5 (including) | 15.2(4)e5 (including) |
Ios | Cisco | 15.2(4)e5a (including) | 15.2(4)e5a (including) |
Ios | Cisco | 15.2(4)e6 (including) | 15.2(4)e6 (including) |
Ios | Cisco | 15.2(4)e7 (including) | 15.2(4)e7 (including) |
Ios | Cisco | 15.2(4)e8 (including) | 15.2(4)e8 (including) |
Ios | Cisco | 15.2(4)e9 (including) | 15.2(4)e9 (including) |
Ios | Cisco | 15.2(4)e10 (including) | 15.2(4)e10 (including) |
Ios | Cisco | 15.2(4)e10a (including) | 15.2(4)e10a (including) |
Ios | Cisco | 15.2(4)e10d (including) | 15.2(4)e10d (including) |
Ios | Cisco | 15.2(4)ea4 (including) | 15.2(4)ea4 (including) |
Ios | Cisco | 15.2(4)ea5 (including) | 15.2(4)ea5 (including) |
Ios | Cisco | 15.2(4)ea6 (including) | 15.2(4)ea6 (including) |
Ios | Cisco | 15.2(4)ea7 (including) | 15.2(4)ea7 (including) |
Ios | Cisco | 15.2(4)ea8 (including) | 15.2(4)ea8 (including) |
Ios | Cisco | 15.2(4)ea9 (including) | 15.2(4)ea9 (including) |
Ios | Cisco | 15.2(4)ea9a (including) | 15.2(4)ea9a (including) |
Ios | Cisco | 15.2(4)ec1 (including) | 15.2(4)ec1 (including) |
Ios | Cisco | 15.2(4)ec2 (including) | 15.2(4)ec2 (including) |
Ios | Cisco | 15.2(4)m11 (including) | 15.2(4)m11 (including) |
Ios | Cisco | 15.2(5)e (including) | 15.2(5)e (including) |
Ios | Cisco | 15.2(5)ea (including) | 15.2(5)ea (including) |
Ios | Cisco | 15.2(5b)e (including) | 15.2(5b)e (including) |
Ios | Cisco | 15.3(1)sy1 (including) | 15.3(1)sy1 (including) |
Ios | Cisco | 15.3(1)sy2 (including) | 15.3(1)sy2 (including) |
Ios | Cisco | 15.3(3)jpi11 (including) | 15.3(3)jpi11 (including) |
Ios | Cisco | 15.3(3)m8 (including) | 15.3(3)m8 (including) |
Ios | Cisco | 15.3(3)m8a (including) | 15.3(3)m8a (including) |
Ios | Cisco | 15.3(3)m9 (including) | 15.3(3)m9 (including) |
Ios | Cisco | 15.3(3)m10 (including) | 15.3(3)m10 (including) |
Ios | Cisco | 15.3(3)s8 (including) | 15.3(3)s8 (including) |
Ios | Cisco | 15.3(3)s8a (including) | 15.3(3)s8a (including) |
Ios | Cisco | 15.3(3)s9 (including) | 15.3(3)s9 (including) |
Ios | Cisco | 15.3(3)s10 (including) | 15.3(3)s10 (including) |
Ios | Cisco | 15.4(1)sy (including) | 15.4(1)sy (including) |
Ios | Cisco | 15.4(1)sy1 (including) | 15.4(1)sy1 (including) |
Ios | Cisco | 15.4(1)sy2 (including) | 15.4(1)sy2 (including) |
Ios | Cisco | 15.4(1)sy3 (including) | 15.4(1)sy3 (including) |
Ios | Cisco | 15.4(1)sy4 (including) | 15.4(1)sy4 (including) |
Ios | Cisco | 15.4(3)s6 (including) | 15.4(3)s6 (including) |
Ios | Cisco | 15.4(3)s6a (including) | 15.4(3)s6a (including) |
Ios | Cisco | 15.4(3)s7 (including) | 15.4(3)s7 (including) |
Ios | Cisco | 15.4(3)s8 (including) | 15.4(3)s8 (including) |
Ios | Cisco | 15.4(3)s9 (including) | 15.4(3)s9 (including) |
Ios | Cisco | 15.4(3)s10 (including) | 15.4(3)s10 (including) |
Ios | Cisco | 15.5(1)s4 (including) | 15.5(1)s4 (including) |
Ios | Cisco | 15.5(1)sy (including) | 15.5(1)sy (including) |
Ios | Cisco | 15.5(1)sy1 (including) | 15.5(1)sy1 (including) |
Ios | Cisco | 15.5(1)sy2 (including) | 15.5(1)sy2 (including) |
Ios | Cisco | 15.5(1)sy3 (including) | 15.5(1)sy3 (including) |
Ios | Cisco | 15.5(1)sy4 (including) | 15.5(1)sy4 (including) |
Ios | Cisco | 15.5(1)sy5 (including) | 15.5(1)sy5 (including) |
Ios | Cisco | 15.5(1)sy6 (including) | 15.5(1)sy6 (including) |
Ios | Cisco | 15.5(1)sy7 (including) | 15.5(1)sy7 (including) |
Ios | Cisco | 15.5(1)sy8 (including) | 15.5(1)sy8 (including) |
Ios | Cisco | 15.5(1)sy9 (including) | 15.5(1)sy9 (including) |
Ios | Cisco | 15.5(1)sy10 (including) | 15.5(1)sy10 (including) |
Ios | Cisco | 15.5(1)sy11 (including) | 15.5(1)sy11 (including) |
Ios | Cisco | 15.5(2)s4 (including) | 15.5(2)s4 (including) |
Ios | Cisco | 15.5(2)t4 (including) | 15.5(2)t4 (including) |
Ios | Cisco | 15.5(3)m3 (including) | 15.5(3)m3 (including) |
Ios | Cisco | 15.5(3)m4 (including) | 15.5(3)m4 (including) |
Ios | Cisco | 15.5(3)m4a (including) | 15.5(3)m4a (including) |
Ios | Cisco | 15.5(3)m5 (including) | 15.5(3)m5 (including) |
Ios | Cisco | 15.5(3)m6 (including) | 15.5(3)m6 (including) |
Ios | Cisco | 15.5(3)m6a (including) | 15.5(3)m6a (including) |
Ios | Cisco | 15.5(3)m7 (including) | 15.5(3)m7 (including) |
Ios | Cisco | 15.5(3)m8 (including) | 15.5(3)m8 (including) |
Ios | Cisco | 15.5(3)m9 (including) | 15.5(3)m9 (including) |
Ios | Cisco | 15.5(3)m10 (including) | 15.5(3)m10 (including) |
Ios | Cisco | 15.5(3)s3 (including) | 15.5(3)s3 (including) |
Ios | Cisco | 15.5(3)s4 (including) | 15.5(3)s4 (including) |
Ios | Cisco | 15.5(3)s5 (including) | 15.5(3)s5 (including) |
Ios | Cisco | 15.5(3)s6 (including) | 15.5(3)s6 (including) |
Ios | Cisco | 15.5(3)s6a (including) | 15.5(3)s6a (including) |
Ios | Cisco | 15.5(3)s6b (including) | 15.5(3)s6b (including) |
Ios | Cisco | 15.5(3)s7 (including) | 15.5(3)s7 (including) |
Ios | Cisco | 15.5(3)s8 (including) | 15.5(3)s8 (including) |
Ios | Cisco | 15.5(3)s9 (including) | 15.5(3)s9 (including) |
Ios | Cisco | 15.5(3)s9a (including) | 15.5(3)s9a (including) |
Ios | Cisco | 15.5(3)s10 (including) | 15.5(3)s10 (including) |
Ios | Cisco | 15.7(3)m (including) | 15.7(3)m (including) |
Ios | Cisco | 15.7(3)m0a (including) | 15.7(3)m0a (including) |
Ios | Cisco | 15.7(3)m1 (including) | 15.7(3)m1 (including) |
Ios | Cisco | 15.7(3)m2 (including) | 15.7(3)m2 (including) |
Ios | Cisco | 15.7(3)m3 (including) | 15.7(3)m3 (including) |
Ios | Cisco | 15.7(3)m4 (including) | 15.7(3)m4 (including) |
Ios | Cisco | 15.7(3)m4a (including) | 15.7(3)m4a (including) |
Ios | Cisco | 15.7(3)m4b (including) | 15.7(3)m4b (including) |
Ios | Cisco | 15.7(3)m5 (including) | 15.7(3)m5 (including) |
Ios | Cisco | 15.7(3)m6 (including) | 15.7(3)m6 (including) |
Ios | Cisco | 15.7(3)m7 (including) | 15.7(3)m7 (including) |
Ios | Cisco | 15.7(3)m8 (including) | 15.7(3)m8 (including) |
Ios | Cisco | 15.7(3)m9 (including) | 15.7(3)m9 (including) |
Ios | Cisco | 15.8(3)m (including) | 15.8(3)m (including) |
Ios | Cisco | 15.8(3)m0a (including) | 15.8(3)m0a (including) |
Ios | Cisco | 15.8(3)m0b (including) | 15.8(3)m0b (including) |
Ios | Cisco | 15.8(3)m1 (including) | 15.8(3)m1 (including) |
Ios | Cisco | 15.8(3)m1a (including) | 15.8(3)m1a (including) |
Ios | Cisco | 15.8(3)m2 (including) | 15.8(3)m2 (including) |
Ios | Cisco | 15.8(3)m2a (including) | 15.8(3)m2a (including) |
Ios | Cisco | 15.8(3)m3 (including) | 15.8(3)m3 (including) |
Ios | Cisco | 15.8(3)m3a (including) | 15.8(3)m3a (including) |
Ios | Cisco | 15.8(3)m3b (including) | 15.8(3)m3b (including) |
Ios | Cisco | 15.8(3)m4 (including) | 15.8(3)m4 (including) |
Ios | Cisco | 15.8(3)m5 (including) | 15.8(3)m5 (including) |
Ios | Cisco | 15.8(3)m6 (including) | 15.8(3)m6 (including) |
Ios | Cisco | 15.8(3)m7 (including) | 15.8(3)m7 (including) |
Ios | Cisco | 15.8(3)m8 (including) | 15.8(3)m8 (including) |
Ios | Cisco | 15.8(3)m9 (including) | 15.8(3)m9 (including) |
Ios | Cisco | 15.8(3)m10 (including) | 15.8(3)m10 (including) |
Ios | Cisco | 15.9(3)m (including) | 15.9(3)m (including) |
Ios | Cisco | 15.9(3)m0a (including) | 15.9(3)m0a (including) |
Ios | Cisco | 15.9(3)m1 (including) | 15.9(3)m1 (including) |
Ios | Cisco | 15.9(3)m2 (including) | 15.9(3)m2 (including) |
Ios | Cisco | 15.9(3)m2a (including) | 15.9(3)m2a (including) |
Ios | Cisco | 15.9(3)m3 (including) | 15.9(3)m3 (including) |
Ios | Cisco | 15.9(3)m3a (including) | 15.9(3)m3a (including) |
Ios | Cisco | 15.9(3)m3b (including) | 15.9(3)m3b (including) |
Ios | Cisco | 15.9(3)m4 (including) | 15.9(3)m4 (including) |
Ios | Cisco | 15.9(3)m4a (including) | 15.9(3)m4a (including) |
Ios | Cisco | 15.9(3)m5 (including) | 15.9(3)m5 (including) |
Ios | Cisco | 15.9(3)m6 (including) | 15.9(3)m6 (including) |
Ios | Cisco | 15.9(3)m6a (including) | 15.9(3)m6a (including) |
Ios | Cisco | 15.9(3)m6b (including) | 15.9(3)m6b (including) |
Ios | Cisco | 15.9(3)m7 (including) | 15.9(3)m7 (including) |
Ios | Cisco | 15.9(3)m7a (including) | 15.9(3)m7a (including) |