CVE-2015-4204
Severity Score
6.8
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Memory leak in Cisco IOS 12.2 in the Performance Routing Engine (PRE) module on uBR10000 devices allows remote authenticated users to cause a denial of service (memory consumption or PXF process crash) by sending docsIfMCmtsMib SNMP requests quickly, aka Bug ID CSCue65051.
Fuga de memoria en Cisco IOS 12.2 en el módulo Performance Routing Engine (PRE) en los dispositivos uBR10000 permite a usuarios remotos autenticados causar una denegación de servicio (consumo de memoria o caída del proceso PXF) mediante el envío rápido de solicitudes de SNMP docsIfMCmtsMib, también conocida como Bug ID CSCue65051.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2015-06-04 CVE Reserved
- 2015-06-23 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-399: Resource Management Errors
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/75337 | Third Party Advisory | |
| http://www.securitytracker.com/id/1032692 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://tools.cisco.com/security/center/viewAlert.x?alertId=39440 | 2016-12-28 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Cisco Ios Search vendor "Cisco" for product "Cisco Ios" | 12.2 Search vendor "Cisco" for product "Cisco Ios" and version "12.2" | - |
Affected
| in | Cisco Search vendor "Cisco" | Ubr10000 Cable Modem Termination System Search vendor "Cisco" for product "Ubr10000 Cable Modem Termination System" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Cisco Ios Search vendor "Cisco" for product "Cisco Ios" | 12.2\(33\) Search vendor "Cisco" for product "Cisco Ios" and version "12.2\(33\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Ubr10000 Cable Modem Termination System Search vendor "Cisco" for product "Ubr10000 Cable Modem Termination System" | - | - |
Safe
|