CVE-2005-2451

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.4 Cisco IOS XR versions prior to 3.2

Description The issue allows remote attackers on a local network segment to cause a denial of service (device reload) and possibly execute arbitrary code via a crafted IPv6 packet. Only devices that have been explicitly configured to process IPv6 traffic are affected. Upon successful exploitation, the device may reload or be open to further exploitation.

Recommendations For Cisco IOS versions 12.0 through 12.4, update to a version that addresses this vulnerability. For Cisco IOS XR versions prior to 3.2, update to version 3.2 or later. As a temporary workaround, consider disabling IPv6 traffic processing on affected devices until a patch is available.