CVE-2015-0609

Race condition in the Common Classification Engine (CCE) in the Measurement, Aggregation, and Correlation Engine (MACE) implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding (CEF) switching, aka Bug ID CSCuj96752.

Published: Feb 16, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-0609
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C

CWEs:

CWE-362

Affected Software
References

Software	From	Fixed in
cisco / ios	-	15.4\(2\)t3.x
cisco / ios	15.4(2)t1	15.4(2)t1.x
cisco / ios	15.4(1)t2	15.4(1)t2.x
cisco / ios	15.4(2)t2	15.4(2)t2.x
cisco / ios	15.4(1)t3	15.4(1)t3.x
cisco / ios	15.4(1)t	15.4(1)t.x
cisco / ios	15.4(2)t	15.4(2)t.x
cisco / ios	15.4(1)t1	15.4(1)t1.x
cisco / ios	15.4t	15.4t.x
cisco / ios	15.4(1)t4	15.4(1)t4.x

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0609
http://tools.cisco.com/security/center/viewAlert.x?alertId=37420
http://www.securityfocus.com/bid/72564
http://www.securitytracker.com/id/1031731
https://exchange.xforce.ibmcloud.com/vulnerabilities/100809

Vulnerability Database

290,273

CVE-2015-0609