CVE-2014-3343

Name of the Vulnerable Software and Affected Versions Cisco IOS XR version 5.1

Description A vulnerability in the DHCP version 6 (DHCPv6) code could allow an unauthenticated, remote attacker to cause the DHCPv6 server process on an affected device to crash. The issue is due to incorrect handling of malformed DHCPv6 packets. An attacker could exploit this by sending a malformed DHCPv6 packet to an affected device configured with DHCPv6 server functionality. The attacker may need access to trusted, internal networks behind a firewall to send the packets and may also need to obtain additional information about the device configuration.

Recommendations For Cisco IOS XR version 5.1, update to a fixed software version to resolve the issue. As a temporary workaround, consider restricting access to the DHCPv6 server functionality until a patch is available.