CVE-2015-6365

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.2(04)M through 15.4(03)M

Description A vulnerability in Cisco devices running Cisco IOS Software allows remote authenticated users to bypass intended network-traffic restrictions by using PPP. This issue arises because physical-interface ACLs supersede virtual PPP interface ACLs. An attacker could exploit this to bypass virtual PPP ACLs and pass denied traffic across virtual PPP interfaces, effectively allowing traffic to pass as if the ACLs do not exist.

Recommendations For Cisco IOS version 15.2(04)M, update to a newer version that addresses this issue. For Cisco IOS version 15.4(03)M, update to a newer version that addresses this issue. As a temporary workaround, consider restricting the use of PPP until a patch is available.