CVE-2016-6391

Severity

78%

Complexity

99%

Confidentiality

115%

Cisco IOS 12.2 and 15.0 through 15.3 allows remote attackers to cause a denial of service (traffic-processing outage) via a crafted series of Common Industrial Protocol (CIP) requests, aka Bug ID CSCur69036.

Cisco IOS 12.2 and 15.0 through 15.3 allows remote attackers to cause a denial of service (traffic-processing outage) via a crafted series of Common Industrial Protocol (CIP) requests, aka Bug ID CSCur69036.

CVSS 3.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

CVSS 2.0 Base Score 7.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C).

Overview

Type

Cisco IOS

First reported 8 years ago

2016-10-05 20:59:00

Last updated 7 years ago

2017-07-30 01:29:00

Affected Software

Cisco IOS 12.2(44)EX

12.2\(44\)ex

Cisco IOS 12.2(44)EX1

12.2\(44\)ex1

Cisco IOS 12.2(46)SE

12.2\(46\)se

Cisco IOS 12.2(46)SE1

12.2\(46\)se1

Cisco IOS 12.2(46)SE2

12.2\(46\)se2

Cisco IOS 12.2(50)SE

12.2\(50\)se

Cisco IOS 12.2(50)SE1

12.2\(50\)se1

Cisco IOS 12.2(50)SE2

12.2\(50\)se2

Cisco IOS 12.2(50)SE3

12.2\(50\)se3

Cisco IOS 12.2(50)SE4

12.2\(50\)se4

Cisco IOS 12.2(50)SE5

12.2\(50\)se5

Cisco IOS 12.2 (52)SE

12.2\(52\)se

Cisco IOS 12.2 (52)SE1

12.2\(52\)se1

Cisco IOS 12.2(55)SE

12.2\(55\)se

Cisco IOS 12.2(55)SE3

12.2\(55\)se3

Cisco IOS 12.2(55)SE4

12.2\(55\)se4

Cisco IOS 12.2(55)SE5

12.2\(55\)se5

Cisco IOS 12.2(55)SE6

12.2\(55\)se6

Cisco IOS 12.2(55)SE7

12.2\(55\)se7

Cisco IOS 12.2(55)SE8

12.2\(55\)se8

Cisco IOS 12.2(55)SE9

12.2\(55\)se9

Cisco IOS 12.2(55)SE10

12.2\(55\)se10

Cisco IOS 12.2(58)SE2

12.2\(58\)se2

Cisco IOS 15.0(1)EY

15.0\(1\)ey

Cisco IOS 15.0(1)EY1

15.0\(1\)ey1

Cisco IOS 15.0(1)EY2

15.0\(1\)ey2

Cisco IOS 15.0(2)EB

15.0\(2\)eb

Cisco IOS 15.0(2)EY

15.0\(2\)ey

Cisco IOS 15.0(2)EY1

15.0\(2\)ey1

Cisco IOS 15.0(2)EY2

15.0\(2\)ey2

Cisco IOS 15.0(2)EY3

15.0\(2\)ey3

Cisco IOS 15.0(2)SE

15.0\(2\)se

Cisco IOS 15.0(2)SE1

15.0\(2\)se1

Cisco IOS 15.0(2)SE2

15.0\(2\)se2

Cisco IOS 15.0(2)SE3

15.0\(2\)se3

Cisco IOS 15.0(2)SE4

15.0\(2\)se4

Cisco IOS 15.0(2)SE5

15.0\(2\)se5

Cisco IOS 15.0(2)SE6

15.0\(2\)se6

Cisco IOS 15.0(2)SE7

15.0\(2\)se7

Cisco IOS 15.0(2)SE9

15.0\(2\)se9

Cisco IOS 15.2(1)EY

15.2\(1\)ey

Cisco IOS 15.2(2)E

15.2\(2\)e

Cisco IOS 15.2(2)E1

15.2\(2\)e1

Cisco IOS 15.2(2)E2

15.2\(2\)e2

Cisco IOS 15.2(2)E4

15.2\(2\)e4

Cisco IOS 15.2(3)EA

15.2\(3\)ea

Cisco IOS 15.3(3)JA

15.3\(3\)ja

Cisco IOS 15.3(3)JA1

15.3\(3\)ja1

Cisco IOS 15.3(3)JA1M

15.3\(3\)ja1m

Cisco IOS 15.3(3)JA1N

15.3\(3\)ja1n

Cisco IOS 15.3(3)JA4

15.3\(3\)ja4

Cisco IOS 15.3(3)JA5

15.3\(3\)ja5

Cisco IOS 15.3(3)JA7

15.3\(3\)ja7

Cisco IOS 15.3(3)JA8

15.3\(3\)ja8

Cisco IOS 15.3(3)JA9

15.3\(3\)ja9

Cisco IOS 15.3(3)JA77

15.3\(3\)ja77

Cisco IOS 15.3(3)JAA

15.3\(3\)jaa

Cisco IOS 15.3(3)JAB

15.3\(3\)jab

Cisco IOS 15.3(3)JAX

15.3\(3\)jax

Cisco IOS 15.3(3)JAX1

15.3\(3\)jax1

Cisco IOS 15.3(3)JAX2

15.3\(3\)jax2

Cisco IOS 15.3(3)JB

15.3\(3\)jb

Cisco IOS 15.3(3)JB75

15.3\(3\)jb75

Cisco IOS 15.3(3)JBB

15.3\(3\)jbb

Cisco IOS 15.3(3)JBB1

15.3\(3\)jbb1

Cisco IOS 15.3(3)JBB2

15.3\(3\)jbb2

Cisco IOS 15.3(3)JBB4

15.3\(3\)jbb4

Cisco IOS 15.3(3)JBB5

15.3\(3\)jbb5

Cisco IOS 15.3(3)JBB6

15.3\(3\)jbb6

Cisco IOS 15.3(3)JBB6A

15.3\(3\)jbb6a

Cisco IOS 15.3(3)JBB8

15.3\(3\)jbb8

Cisco IOS 15.3(3)JBB50

15.3\(3\)jbb50

Cisco IOS 15.3(3)JC

15.3\(3\)jc

Cisco IOS 15.3(3)JN3

15.3\(3\)jn3

Cisco IOS 15.3(3)JN4

15.3\(3\)jn4

Cisco IOS 15.3(3)JN7

15.3\(3\)jn7

Cisco IOS 15.3(3)JN8

15.3\(3\)jn8

Cisco IOS 15.3(3)JNB

15.3\(3\)jnb

Cisco IOS 15.3(3)JNB1

15.3\(3\)jnb1

Cisco IOS 15.3(3)JNB2

15.3\(3\)jnb2

Cisco IOS 15.3(3)JNB3

15.3\(3\)jnb3

Cisco IOS 15.3(3)JNC

15.3\(3\)jnc

Cisco IOS 15.3(3)JNC1

15.3\(3\)jnc1

Cisco IOS 15.3(3)JNP

15.3\(3\)jnp

Cisco IOS 15.3(3)JNP1

15.3\(3\)jnp1

References

20160928 Cisco IOS Software Common Industrial Protocol Request Denial of Service Vulnerability

Vendor Advisory

93197

1036914

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.