CVE-2016-6380

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.4 Cisco IOS versions 15.0 through 15.6 Cisco IOS XE versions 3.1 through 3.15

Description A flaw in the DNS forwarder functionality allows remote attackers to obtain sensitive information from process memory or cause a denial of service via a crafted DNS response. The vulnerability is due to a flaw in handling crafted DNS response messages. An attacker could exploit this vulnerability by intercepting and crafting a DNS response message to a client DNS query that was forwarded from the affected device to a DNS server. A successful exploit could cause the device to reload, resulting in a denial of service condition or corruption of the local DNS cache information.

Recommendations For Cisco IOS versions 12.0 through 12.4, update to a fixed version to address the vulnerability. For Cisco IOS versions 15.0 through 15.6, update to a fixed version to address the vulnerability. For Cisco IOS XE versions 3.1 through 3.15, update to a fixed version to address the vulnerability. As a temporary workaround, consider restricting access to the DNS forwarder functionality until a patch is available.