CVE-2016-6384

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2 through 12.4 and 15.0 through 15.6 Cisco IOS XE versions 3.1 through 3.17 and 16.2

Description A vulnerability in the H.323 subsystem could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition on an affected device. The vulnerability is due to a failure to properly validate certain fields in an H.323 protocol suite message. When processing the malicious message, the affected device may attempt to access an invalid memory region, resulting in a crash. An attacker who can submit an H.323 packet designed to trigger the vulnerability could cause the affected device to crash and restart.

Recommendations For Cisco IOS versions 12.2 through 12.4 and 15.0 through 15.6, update to a fixed software version. For Cisco IOS XE versions 3.1 through 3.17 and 16.2, update to a fixed software version. As a temporary workaround, consider restricting access to the H.323 subsystem until a patch is available.