CVE-2015-6289

Name of the Vulnerable Software and Affected Versions Cisco IOS version 15.5(3)M

Description The issue is related to errors in resource management, allowing a remote attacker to cause a denial of service (memory consumption) by sending crafted TCP packets on the SSH port. This can lead to a partial denial of service condition due to low memory. The vulnerability is caused by the handling of out-of-order or invalid TCP packets on remote connections to affected devices. An estimated number of potentially affected devices is not provided. There is no information about real-world incidents where this issue was exploited.

Recommendations For Cisco IOS version 15.5(3)M, update to a version that addresses this issue, as Cisco will release software updates to fix the vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.