CVE-2015-0688

Name of the Vulnerable Software and Affected Versions Cisco IOS XE version 3.10.2S

Description The issue is caused by improper handling of malformed H.323 packets by an affected device when the device is configured to use Network Address Translation (NAT). An unauthenticated, remote attacker could exploit this by sending malformed H.323 packets to a targeted device, potentially causing the Embedded Services Processor (ESP) module on the device to crash, resulting in a denial of service (DoS) condition. To exploit this, an attacker may need to obtain additional information such as whether the targeted device is configured to use NAT and may need access to trusted, internal networks to send H.323 packets to the device.

Recommendations For Cisco IOS XE version 3.10.2S, update to a newer version that includes the fix for this issue, as confirmed by Cisco. As a temporary workaround, consider restricting access to the device when NAT is enabled to minimize the risk of exploitation.