CVE-2015-0586

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.3(100)M and earlier

Description The issue is related to the Network-Based Application Recognition (NBAR) protocol implementation, which allows remote attackers to cause a denial of service (DoS) condition by sending IPv4 packets. This can lead to the NBAR process hanging, requiring a router restart to recover. An attacker may need to gather additional information about the targeted device to exploit this issue.

Recommendations For Cisco IOS versions 15.3(100)M and earlier, update to a newer version that includes the fix for this issue, as confirmed by Cisco in their security notice. As a temporary workaround, consider restricting access to the NBAR process to minimize the risk of exploitation.