CVE-2017-9481

Name of the Vulnerable Software and Affected Versions Comcast firmware on Cisco DPC3939 version dpc3939-P20-18-v303r20421746-170221a-CMCST

Description The issue allows remote attackers to gain unintended access to the Network Processor (NP) 169.254/16 IP network. This is achieved by adding a routing-table entry that specifies the LAN IP address as the router for that network.

Recommendations For Comcast firmware on Cisco DPC3939 version dpc3939-P20-18-v303r20421746-170221a-CMCST, consider restricting access to the routing-table configuration to prevent unauthorized modifications until a patch is available.