CVE-2017-3864

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2, 12.4, and 15.0 through 15.6 Cisco IOS XE versions 3.3 through 3.7

Description A vulnerability in the DHCP client implementation could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability occurs during the parsing of a crafted DHCP packet. An attacker could exploit this vulnerability by sending crafted DHCP packets to an affected device that is configured as a DHCP client. A successful exploit could allow the attacker to cause a reload of an affected device, resulting in a DoS condition.

Recommendations For Cisco IOS versions 12.2, 12.4, and 15.0 through 15.6, update to a fixed release of Cisco IOS Software. For Cisco IOS XE versions 3.3 through 3.7, update to a fixed release of Cisco IOS XE Software. As a temporary workaround, consider restricting the use of the DHCP client configuration to minimize the risk of exploitation.