CVE-2016-6391

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2 and 15.0 through 15.3

Description A vulnerability in the Common Industrial Protocol (CIP) feature could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition by submitting a crafted CIP message request to an affected device. This could cause the switch to stop processing traffic, requiring a restart of the device to regain functionality.

Recommendations For Cisco IOS versions 12.2 and 15.0 through 15.3, update to a newer version that addresses this vulnerability, as software updates have been released by Cisco. There are no workarounds that address this vulnerability.