Cisco IOS Software UBR Devices SNMP subsystem Denial of Service Vulnerability
Cisco IOS Software UBR Devices SNMP subsystem Denial of Service Vulnerability
Release date:
Updated on:
Affected Systems:
Cisco IOS
Description:
CVE (CAN) ID: CVE-2015-4204
Cisco IOS is an interconnected network operating system used on most Cisco system routers and network switches.
The SNMP subsystem of Cisco Universal Broadband Router has a vulnerability. authenticated remote attackers can cause PXF process crash on the PRE module. This vulnerability is caused by memory leakage when you use SNMP to poll certain values in docsIfMCmtsMib.
<* Source: Cisco
*>
Suggestion:
Vendor patch:
Cisco
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://tools.cisco.com/security/center/viewAlert.x? AlertId = 39440
This article permanently updates the link address: