Vulnerability Description
Memory leak in Cisco IOS 12.2 in the Performance Routing Engine (PRE) module on uBR10000 devices allows remote authenticated users to cause a denial of service (memory consumption or PXF process crash) by sending docsIfMCmtsMib SNMP requests quickly, aka Bug ID CSCue65051.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco Ios | 12.2 |
| Cisco | Ubr10000 Cable Modem Termination System | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=39440Vendor Advisory
- http://www.securityfocus.com/bid/75337Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032692Third Party AdvisoryVDB Entry
- http://tools.cisco.com/security/center/viewAlert.x?alertId=39440Vendor Advisory
- http://www.securityfocus.com/bid/75337Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032692Third Party AdvisoryVDB Entry
FAQ
What is CVE-2015-4204?
CVE-2015-4204 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Memory leak in Cisco IOS 12.2 in the Performance Routing Engine (PRE) module on uBR10000 devices allows remote authenticated users to cause a denial of service (memory consumption or PXF process crash...
How severe is CVE-2015-4204?
CVE-2015-4204 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-4204?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Cisco Ios, Cisco Ubr10000 Cable Modem Termination System.