CVE-2015-4243

Name of the Vulnerable Software and Affected Versions Cisco IOS XE version 3.5.0S

Description The issue is related to the PPPoE establishment implementation, which allows remote attackers to cause a denial of service by sending malformed PPPoE Active Discovery Request (PADR) packets. This is due to improper processing of these packets. An attacker could exploit this by sending PADR packets as part of PPPoE establishment, allowing them to cause a reload of the affected device. The attacker must be on the same broadcast or collision domain as the targeted system to exploit this issue.

Recommendations For Cisco IOS XE version 3.5.0S, update to a newer version that includes the software updates released by Cisco to fix this issue. As a temporary workaround, consider restricting access to the PPPoE establishment process to minimize the risk of exploitation.