CVE-2018-0239

Name of the Vulnerable Software and Affected Versions: Cisco Aggregation Services Router (ASR) 5700 Series devices and Virtualized Packet Core (VPC) System Software (affected versions not specified)

Description: A vulnerability in the egress packet processing functionality could allow an unauthenticated, remote attacker to cause an interface on the device to cease forwarding packets. The device may need to be manually reloaded to clear this Interface Forwarding Denial of Service condition. This is due to the failure to properly check that the length of a packet to transmit does not exceed the maximum supported length of the network interface card (NIC). An attacker could exploit this by sending a crafted IP packet or a series of crafted IP fragments through an interface on the targeted device, affecting both IPv4 and IPv6 network traffic.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.