CVE-2016-6412

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.6(1)T1 and later Cisco IOS XE (affected versions not specified)

Description A issue in the Cisco Application-hosting Framework (CAF) component allows man-in-the-middle attackers to trigger arbitrary downloads via crafted HTTP headers. The vulnerability is due to insufficient input validation, which could allow an unauthenticated, remote attacker to cause a CAF user to download a file controlled by the attacker by injecting crafted HTTP headers into the communication path between the user and CAF.

Recommendations For Cisco IOS version 15.6(1)T1, update to a fixed software version. For Cisco IOS XE, update to a fixed software version. As a temporary workaround, consider restricting access to the CAF component until a patch is available. Avoid using the IOx feature set in Cisco IOS and IOS XE Software until the issue is resolved.