CVE-2014-3299

Name of the Vulnerable Software and Affected Versions Cisco IOS (affected versions not specified)

Description The issue allows remote authenticated users to cause a denial of service, resulting in a device reload, by sending malformed IPsec packets to an affected device. This is due to improper processing of such packets. An attacker must first authenticate to the device to exploit this issue, which decreases the likelihood of a successful exploit. The estimated number of potentially affected devices worldwide is not specified.

Recommendations To resolve the issue, update to a version of Cisco IOS Software that has the security fix for the improper processing of malformed IPsec packets. As a temporary workaround, consider restricting access to IPsec processing on the affected device until a patch is available.