CVE-2018-0157

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software versions Everest-16.4.1 through Everest-16.6.1a

Description: A vulnerability in the Zone-Based Firewall code could allow an unauthenticated, remote attacker to cause a device to reload. The issue is due to the handling of fragmented packets in the firewall code. An attacker could exploit this by sending fragmented IP Version 4 or IP Version 6 packets through an affected device, potentially causing the device to crash and resulting in a denial of service (DoS) condition.

Recommendations: For versions Everest-16.4.1 through Everest-16.6.1a, update to a version that includes the software updates released by Cisco to address this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.