CVE-2015-0710

Published: Apr 29, 2015Modified: May 6, 2026

6.1

Vector

AV:A/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 6.5 / Impact: 6.9

Source: NVD

Description

The Overlay Transport Virtualization (OTV) implementation in Cisco IOS XE 3.10S allows remote attackers to cause a denial of service (device reload) via a series of packets that are considered oversized and trigger improper fragmentation handling, aka Bug IDs CSCup37676 and CSCup30335.

Affected (2)

Products: Cisco: Ios Xe

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Cisco Ios Xe	Version 3.10.0s
Cisco Ios Xe	Version 3.10s.01

Related CWEs

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=38549

Source: psirt@cisco.com

Vendor Advisory

http://www.securitytracker.com/id/1032212

Source: psirt@cisco.com

http://tools.cisco.com/security/center/viewAlert.x?alertId=38549

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1032212

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.