CVE-2016-1425

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.0(2)SG5 through 15.4(1.13)S

Description The issue is caused by improper handling of crafted LLDP packets, which can lead to a denial of service condition. An attacker could exploit this by sending a specially crafted LLDP packet to the affected device, causing it to crash. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For versions 15.0(2)SG5, 15.1(2)SG3, 15.2(1)E, 15.3(3)S, and 15.4(1.13)S, update to a newer version that addresses this issue. As a temporary workaround, consider restricting access to the LLDP protocol to minimize the risk of exploitation.