HomePentest-Tools.com Logo

Cisco ASA DHCPv6 Relay DoS Vulnerability (cisco-sa-20151021-asa-dhcp1) CVE-2015-6324

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

A vulnerability in the DHCPv6 relay feature of Cisco ASA may lead to a denial of service.

Risk description

A vulnerability in the DHCPv6 relay feature of Cisco ASA software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient validation of DHCPv6 packets. Cisco ASA Software is affected by this vulnerability only if the software is configured with the DHCPv6 relay feature. An attacker could exploit this vulnerability by sending crafted DHCPv6 packets to an affected device. An unauthenticated, remote attacker could cause a device reload leading to a denial of service condition.

Recommendation

Apply the appropriate updates from Cisco. As a workaround disable the DHCPv6 relay feature.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Oct 25, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available