CVE-2015-0648

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2, 12.4, 15.0, 15.2, and 15.3

Description The issue allows remote attackers to cause a denial of service via crafted Common Industrial Protocol (CIP) TCP packets. This could result in memory consumption. Successful exploitation could allow an unauthenticated, remote attacker to cause a reload of the forwarding plane, resulting in an interruption of services on an affected device. Repeated exploitation could result in a sustained denial of service condition. Additionally, successful exploitation could allow an unauthenticated, remote attacker to cause a memory leak on an affected device.

Recommendations For Cisco IOS versions 12.2, 12.4, 15.0, 15.2, and 15.3, update to a version that includes the software updates released by Cisco to address these vulnerabilities. As a temporary workaround, consider restricting access to the CIP feature to minimize the risk of exploitation. Avoid using the CIP protocol until the issue is resolved.