CVE-2015-4223

Name of the Vulnerable Software and Affected Versions Cisco IOS XR version 5.1.3

Description The issue is related to errors in resource management in the Cisco IOS operating system. It can be exploited by a remote attacker using a specially crafted MPLS packet, potentially causing a denial of service. The vulnerability is due to improper processing of crafted MPLS Label Distribution Protocol (LDP) packets. An attacker could exploit this by sending crafted MPLS LDP packets to an affected device, allowing them to cause a reload of the MPLS LDP process. The attacker may need additional information about the targeted device, such as its configuration to process MPLS LDP packets.

Recommendations For Cisco IOS XR version 5.1.3, update to a newer version that includes the fix for this issue, as confirmed by Cisco. As a temporary workaround, consider restricting access to the MPLS LDP packet processing feature to minimize the risk of exploitation.