CVE-2013-5547

Name of the Vulnerable Software and Affected Versions Cisco IOS XE versions 3.9 through 3.9.2S

Description The issue allows remote attackers to cause a denial of service by sending malformed EoGRE packets over IPv4 or IPv6. Successful exploitation could trigger a reload of the embedded services processors card or the route processor card, causing an interruption of services. Repeated exploitation could result in a sustained denial of service condition.

Recommendations For Cisco IOS XE versions 3.9 through 3.9.2S, update to a version after 3.9.2S to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable EoGRE packet processing functionality until a patch is available.