SB2015062701 - Race condition in Nextcloud ios
Published: June 27, 2015 Updated: August 9, 2020
Security Bulletin ID
SB2015062701
Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Race condition (CVE-ID: CVE-2015-4199)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
Race condition in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S in the Performance Routing Engine (PRE) module on UBR devices allows remote attackers to cause a denial of service (NULL pointer free and module crash) by triggering intermittent connectivity with many IPv6 CPE devices, aka Bug ID CSCug47366.
Remediation
Install update from vendor's website.