{ "id": "CVE-2015-6324", "sourceIdentifier": "ykramarz@cisco.com", "published": "2015-10-25T02:59:05.133", "lastModified": "2017-01-04T18:52:35.100", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) software 9.0 before 9.0(4.37), 9.1 before 9.1(6.6), 9.2 before 9.2(4), 9.3 before 9.3(3.5), and 9.4 before 9.4(2) allows remote attackers to cause a denial of service (device reload) via crafted DHCPv6 packets, aka Bug IDs CSCus56252 and CSCus57142." }, { "lang": "es", "value": "La implementaci\u00f3n DHCPv6 relay en Cisco Adaptive Security Appliance (ASA) software 9.0 en versiones anteriores a 9.0(4.37), 9.1 en versiones anteriores a 9.1(6.6), 9.2 en versiones anteriores a 9.2(4), 9.3 en versiones anteriores a 9.3(3.5) y 9.4 en versiones anteriores a 9.4(2) permite a atacantes remotos provocar una denegaci\u00f3n de servicio (recarga de dispositivo) a trav\u00e9s de paquetes DHCPv6 manipulados, tambi\u00e9n conocida como Bug IDs CSCus56252 y CSCus57142." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1 }, "baseSeverity": "HIGH", "exploitabilityScore": 8.6, "impactScore": 6.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-399" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "BB357C18-AD20-40EA-9DFC-82357C3C0286" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "4208C477-61D9-4675-A07B-D0F89EA008AA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.2.10:*:*:*:*:*:*:*", "matchCriteriaId": "260CB5D6-3250-406D-AED9-AB20CDC098FA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "F3A2CA43-A785-4FE7-B9A2-FEBB9243ABF5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "AA489865-9ED9-44E6-BE96-E3BDC48BE3E1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.3.8:*:*:*:*:*:*:*", "matchCriteriaId": "EDB1BF56-6914-4AC7-A699-4CDB59AF7FBC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "96D3F911-598D-4BC8-B5A4-F650B5DDF41E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "A3AAAEC3-9BFB-4B1F-A142-83E6344761A8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "A240FF4C-5A13-4774-BFF8-34A790C36571" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "D936BFD8-A706-410A-96F7-E8BE90B60C0A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.17:*:*:*:*:*:*:*", "matchCriteriaId": "817F732F-E979-4125-BF0B-A37E353D77E0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.20:*:*:*:*:*:*:*", "matchCriteriaId": "F56D4EA1-7CB2-450B-9074-E611B7BE67E2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.24:*:*:*:*:*:*:*", "matchCriteriaId": "3263E1AC-2182-4A9E-904A-66BFE4681063" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.26:*:*:*:*:*:*:*", "matchCriteriaId": "6637885D-2D5D-4F37-B6AA-9E2D5EFC96E4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.29:*:*:*:*:*:*:*", "matchCriteriaId": "A0413B00-8783-42C1-8EB5-EF4ACB304EA2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.0.4.33:*:*:*:*:*:*:*", "matchCriteriaId": "76D30A4D-78E5-4786-827F-25FCB3DE754E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "CD618D16-8A04-4E5D-A6D1-C68BAA879FF7" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "D63064CF-75CE-4A73-A063-8ECA11997190" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "962B9FFB-A17E-460D-A452-159B1B12AC64" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "4A2E2032-5D93-4525-B31D-22EAEFADC252" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "8E70C359-27DF-4D46-B11D-2F8E55CFEC19" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "838C73E6-830D-42EB-9625-36F9074D729D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "19CB3EA6-997B-4711-8348-85DEDF3AA359" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "85F3BDBE-141B-450B-A8CE-F48A8A928933" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "6023268C-DE1B-47FD-8763-5FAEA9CEA732" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.5.10:*:*:*:*:*:*:*", "matchCriteriaId": "2E284E59-E394-45C8-908A-834E242CA52C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.5.12:*:*:*:*:*:*:*", "matchCriteriaId": "02555997-119F-4E13-BCD9-F7E9D9A1B94D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.5.15:*:*:*:*:*:*:*", "matchCriteriaId": "9B500AD9-4AF9-45B1-B28A-1D8EDAAB8FFB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.5.21:*:*:*:*:*:*:*", "matchCriteriaId": "DA177715-6FF4-460C-AC47-C3B4B4F97ABF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "72C171A1-9CAA-4EB2-AB9F-302BA98153A6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.1.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "5E9C61FB-AB5A-4A8E-A3C8-F4B619A8F64E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "BBFB974D-CFA2-4B96-BA46-A3B2DC4A498B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "879DFE9B-055A-476C-B57E-661138623D31" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "8FBD4792-5DFC-42BD-AE3C-DD1C215F38BD" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "0DC917E0-2427-45A6-8137-6169E4842E67" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "5BA0142F-35E3-49D8-9CE3-433AAD441A3B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "7A072E1C-D171-4A59-9CA0-02DB07781EDF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "7D8EA557-7F30-44B8-AA62-729F22A938DA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.2.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "9E5C1EA0-8799-4CBE-9877-F01DDE603A27" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "85139F12-D65A-4A89-B91D-4E298D6FC092" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.3.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "6BD09DF0-2BED-482B-8EFB-2DB446F68F14" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "8C976052-9834-4E2C-8301-980D541E53B1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.3.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "41CC3DB8-887F-4795-9A06-3C2B628C9733" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "8EEBA3D1-773E-4E63-8308-F97C0A752AF5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "12ADAC29-C603-45C9-B4C2-7E203AE14BC2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.4.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "D2F2251E-A4F9-4B71-8892-B925D104957E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.4.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "65540F2C-24CA-4ADF-A58A-7975D3A1F6EC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.4.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "E9C9A3A6-2D56-4453-9C63-AB516BB46F4B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:cisco:adaptive_security_appliance_software:9.4.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "844DDF73-A61D-4A94-B522-574DF3E8A66D" } ] } ] } ], "references": [ { "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dhcp1", "source": "ykramarz@cisco.com", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.securitytracker.com/id/1033912", "source": "ykramarz@cisco.com", "tags": [ "Third Party Advisory", "VDB Entry" ] } ] }