CVE-2015-4291

Name of the Vulnerable Software and Affected Versions Cisco IOS XE versions 2.x before 2.4.3 Cisco IOS XE versions 2.5.x before 2.5.1

Description A vulnerability in the code handling the reassembly of fragmented IP version 4 (IPv4) or IP version 6 (IPv6) packets could allow an unauthenticated, remote attacker to cause a crash of the Embedded Services Processor (ESP) processing the packet. The vulnerability is due to improper processing of crafted, fragmented packets. An attacker could exploit this vulnerability by sending a crafted sequence of fragmented packets, potentially allowing the attacker to cause a reload of the affected platform.

Recommendations For Cisco IOS XE versions 2.x before 2.4.3, update to version 2.4.3 or later. For Cisco IOS XE versions 2.5.x before 2.5.1, update to version 2.5.1 or later.