CVE-2015-0769

Name of the Vulnerable Software and Affected Versions Cisco IOS XR versions 4.0.1 through 4.2.0 for CRS-3 Carrier Routing System

Description The issue is related to incorrect processing of IPv6 packets with valid but unlikely IPv6 extension headers, which can cause a denial of service. An attacker could exploit this by sending a specially crafted IPv6 packet to an affected device configured to process IPv6 traffic, leading to a line-card reload and resulting in a DoS condition.

Recommendations For Cisco IOS XR versions 4.0.1 through 4.2.0, update to a newer version that addresses this issue, as software updates have been released by Cisco to fix the vulnerability. At the moment, there is no information about a workaround that mitigates this vulnerability.