Vanhauser

**Name of the Vulnerable Software and Affected Versions** Windows XP Windows Server 2003 Windows Vista Windows Server 2008 Windows 7 **Description** The issue concerns the Neighbor Discovery protocol implementation in the IPv6 stack, allowing remote attackers to cause a denial of service by sending many Router Advertisement messages with different source addresses. This can lead to CPU consumption and system hang. **Recommendations** For Windows XP, consider disabling IPv6 to mitigate the risk of exploitation. For Windows Server 2003, restrict access to the network to minimize the risk of receiving malicious Router Advertisement messages. For Windows Vista, apply configuration changes to limit the impact of CPU consumption. For Windows Server 2008, avoid using the IPv6 stack until the issue is resolved. For Windows 7, consider temporarily disabling the IPv6 protocol to prevent system hang.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS versions prior to 15.0(1)XA5 **Description** The issue is related to the Neighbor Discovery (ND) protocol implementation in the IPv6 stack, which allows remote attackers to cause a denial of service by sending many Router Advertisement (RA) messages with different source addresses. This can lead to CPU consumption and device hang. **Recommendations** For versions prior to 15.0(1)XA5, update to version 15.0(1)XA5 or later to resolve the issue. As a temporary workaround, consider restricting access to the IPv6 network to minimize the risk of exploitation.