Vigil@nce - Cisco IOS, IOS XE: denial of service via IPv6 First Hop
November 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can generate a fatal error in the processing of IPv6
First Hop on Cisco IOS, IOS XE, in order to trigger a denial of
service.
Impacted products: Cisco ASR, Cisco Catalyst, IOS Cisco, IOS XE
Cisco, Cisco Router.
Severity: 2/4.
Creation date: 23/09/2015.
DESCRIPTION OF THE VULNERABILITY
Two vulnerabilities were announced in Cisco IOS and IOS XE.
An attacker can send a malicious IPv6 ND CGA (Cryptographically
Generated Address) packet, in order to trigger a denial of
service. [severity:2/4; 40940, CSCus19794, CVE-2015-6278]
An attacker can send a malicious IPv6 ND for CPPr (Control Plane
Protection) packet, in order to trigger a denial of service.
[severity:2/4; 40941, CSCuo04400, CVE-2015-6279]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IOS-IOS-XE-denial-of-service-via-IPv6-First-Hop-17965