Cisco IOS XE Software Denial Of Service Vulnerabilities
2 Mar. 2016
Summary
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS 15.3(3)S0.1 on ASR devices mishandles internal tables, which allows remote attackers to cause a denial of service (memory consumption or device crash) via a flood of crafted ND messages.
Credit:
The information has been provided by Cisco.
Vulnerable Systems:
*Cisco IOS 15.3(3)S0.1 on ASR devices
Immune Systems:
*Cisco IOS after 15.3(3)S0.1 on ASR devices
Cisco IOS XE Software is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected device, denying service to legitimate users.