CVE-2015-0669

Published: Mar 21, 2015Modified: May 6, 2026

6.4

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:P

Exploitability: 10.0 / Impact: 4.9

Source: NVD

Description

The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 15.4S and 15.4(3)S allows remote attackers to modify configuration settings or cause a denial of service (partial service outage) by sending crafted Autonomic Networking (AN) messages on an intranet network, aka Bug ID CSCup62167.

Affected (2)

Products: Cisco: Ios

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Cisco Ios	Version 15.4(3)s
Cisco Ios	Version 15.4s

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=37935

Source: psirt@cisco.com

Vendor Advisory

http://www.securitytracker.com/id/1031967

Source: psirt@cisco.com

http://tools.cisco.com/security/center/viewAlert.x?alertId=37935

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1031967

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.