CVE-2015-6271

Name of the Vulnerable Software and Affected Versions Cisco IOS XE versions 2.1.0 through 2.4.3 Cisco IOS XE version 2.5.0

Description The issue is related to resource management errors in the Cisco IOS operating system. It allows remote attackers to cause a denial of service, specifically an Embedded Services Processor crash, by sending a crafted SIP packet when the NAT Application Layer Gateway is used.

Recommendations For Cisco IOS XE versions 2.1.0 through 2.4.3, consider disabling the NAT Application Layer Gateway as a temporary workaround until a patch is available. For Cisco IOS XE version 2.5.0, consider disabling the NAT Application Layer Gateway as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.