CVE-2015-6432

Name of the Vulnerable Software and Affected Versions Cisco IOS XR versions 4.2.0 through 5.3.2

Description The issue is related to the handling of Open Shortest Path First (OSPF) Link State Advertisement (LSA) updates, specifically with the number of Path Computation Elements (PCEs) configured for an OSPF LSA opaque area update. This could allow a remote attacker to cause a denial of service (DoS) condition by sending a crafted OSPF LSA update. The exploitation of this issue can lead to the OSPF process restarting when the crafted update is received.

Recommendations For Cisco IOS XR versions 4.2.0 through 5.3.2, update to a fixed software version to address this issue. As a temporary workaround, consider restricting the number of OSPF Path Computation Elements (PCEs) for OSPF LSA opaque area updates to minimize the risk of exploitation.