Cisco ASR 5000 Denial of Service Vulnerability (CVE-2015-0712)
Cisco ASR 5000 Denial of Service Vulnerability (CVE-2015-0712)
Release date:
Updated on:
Affected Systems:
Cisco ASR 5000
Description:
Bugtraq id: 74407
CVE (CAN) ID: CVE-2015-0712
The Cisco ASR 5000 series is a carrier-level platform for deploying high-demand 3G networks and migrating to long-term evolution (LTE) networks.
On the ASR 5000 device, session-manager Services of Cisco StarOS 12.0, 12.2 (300), 14.0, and 14.0 (600) have Remote Denial of Service Vulnerabilities. Remote users send constructed HTTP packets, this vulnerability can cause DoS (device crash ).
<* Source: Cisco
*>
Suggestion:
Vendor patch:
Cisco
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://tools.cisco.com/security/center/viewAlert.x? AlertId = 38580
This article permanently updates the link address: