CVE-2015-0649

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2 through 15.3

Description The issue allows remote attackers to cause a denial of service (device reload) via malformed Common Industrial Protocol (CIP) TCP packets. Successful exploitation could allow an unauthenticated, remote attacker to cause a reload of the forwarding plane, resulting in an interruption of services on an affected device. Repeated exploitation could result in a sustained DoS condition. Additionally, it could cause a memory leak on an affected device.

Recommendations For Cisco IOS versions 12.2 through 15.3, update to a version that includes the fix for the Cisco IOS Software UDP CIP Denial of Service Vulnerability, Cisco IOS Software TCP CIP Packet Memory Leak Vulnerability, and Cisco IOS Software TCP CIP Denial of Service Vulnerability. As a temporary workaround, consider restricting access to CIP TCP packets to minimize the risk of exploitation.