CVE-2015-0592

Name of the Vulnerable Software and Affected Versions Cisco IOS versions prior to 15.4(2)T3

Description The issue is related to improper management of kernel timers in the Zone-Based Firewall implementation, allowing remote attackers to cause a denial of service via crafted network traffic. This traffic can trigger incorrect kernel-timer handling, leading to a device reload. An attacker may need access to trusted, internal networks behind a firewall to send crafted traffic to the targeted device.

Recommendations For versions prior to 15.4(2)T3, update to a newer version that includes the fix for the kernel timer management issue in the Zone-Based Firewall feature.