CVE-2015-4195

Name of the Vulnerable Software and Affected Versions Cisco IOS XR version 5.1.1.K9SEC

Description A denial of service condition can be caused by an authenticated, remote attacker via a crafted disconnect action within an SSH session. The vulnerability occurs due to an error when an SSH connection is disconnected from the affected device, causing the vty to become unreachable and resulting in further SSH or Telnet connections to fail. To exploit this issue, an attacker must first authenticate to the targeted device, which reduces the likelihood of a successful exploit.

Recommendations For Cisco IOS XR version 5.1.1.K9SEC, update to a fixed software version to resolve the issue. As a temporary workaround, consider restricting SSH connections to minimize the risk of exploitation.