CVE-2016-1424

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.2(1)T1.11 through 15.2(2)TST

Description The issue is caused by improper handling of crafted LLDP packets, which can lead to a denial of service condition. An unauthenticated, adjacent attacker could exploit this by sending a specially crafted LLDP packet to cause the affected device to crash.

Recommendations For versions 15.2(1)T1.11 and 15.2(2)TST, update to a fixed version of Cisco IOS Software to address this issue. As a temporary workaround, consider restricting the processing of LLDP packets to minimize the risk of exploitation.