CVE-2015-6273

Name of the Vulnerable Software and Affected Versions Cisco IOS XE versions prior to 3.1.2S

Description The issue is related to the mishandling of Virtual Fragment Reassembly (VFR) setup by certain firewall and NAT components, which can be exploited by remote attackers to cause a denial of service through crafted IP packets. This can lead to an Embedded Services Processor crash.

Recommendations For Cisco IOS XE versions prior to 3.1.2S, update to version 3.1.2S or later to resolve the issue. As a temporary workaround, consider restricting access to the VFR setup to minimize the risk of exploitation.