CVE-2015-6294

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.2(3)E and earlier Cisco IOS XE versions 3.6(2)E and earlier Cisco Catalyst 4500 Series Switches running Cisco IOS XE Software (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service via crafted Cisco Discovery Protocol (CDP) packets. This is due to improper processing of valid crafted CDP packets. An attacker could exploit this by sending crafted CDP packets to an affected device, causing the software to stop functioning properly and resulting in a denial of service condition. The attacker may need to acquire additional information about the targeted device, such as whether it is configured to process CDP packets.

Recommendations For Cisco IOS versions 15.2(3)E and earlier, update to a version later than 15.2(3)E. For Cisco IOS XE versions 3.6(2)E and earlier, update to a version later than 3.6(2)E. For Cisco Catalyst 4500 Series Switches running Cisco IOS XE Software, apply the released software updates from Cisco. As a temporary workaround, consider disabling the processing of CDP packets on affected devices until a patch is available.