CVE-2014-3361

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.0 through 15.4

Description A vulnerability in the Network Address Translation (NAT) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The issue is due to improper translation of IP version 4 (IPv4) packets and also affects the ALG module's implementation of SIP over NAT, allowing remote attackers to cause a denial of service via multipart SDP IPv4 traffic.

Recommendations For Cisco IOS versions 15.0 through 15.4, update to a version that includes the software updates released by Cisco to address this vulnerability.