PT-2015-7251 · Cisco · Cisco Ios Xe

Published

2015-12-21

Updated

2016-12-07

CVE-2015-6431

CVSS v2.0

6.1

Medium

Vector

AV:A/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco IOS XE versions 16.1.1

Description The issue is caused by incorrect processing of packets with a source MAC address of 0000:0000:0000, allowing an unauthenticated, adjacent attacker to cause the device to reload by sending a frame with a source MAC address of all zeros.

Recommendations For Cisco IOS XE version 16.1.1, update to a fixed software version to address this issue. As a temporary workaround, consider restricting access to the network to minimize the risk of exploitation.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2015-6431

Affected Products

Cisco Ios Xe

PT-2015-7251 · Cisco · Cisco Ios Xe

CVE-2015-6431

Weakness Enumeration

Related Identifiers

Affected Products

References · 5