CVE-2017-3849

Name of the Vulnerable Software and Affected Versions Cisco IOS Software versions 15.2 through 15.6 Cisco IOS XE Software versions 3.7 through 3.18, and 16

Description A vulnerability in the Autonomic Networking Infrastructure (ANI) registrar feature could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation on certain crafted packets. An attacker could exploit this vulnerability by sending a crafted autonomic network channel discovery packet to a device that has all the following characteristics: (1) running a Cisco IOS Software or Cisco IOS XE Software release that supports the ANI feature; (2) configured as an autonomic registrar; (3) has a whitelist configured. An exploit could allow the attacker to cause the affected device to reload.

Recommendations For Cisco IOS Software versions 15.2 through 15.6, update to a fixed release. For Cisco IOS XE Software versions 3.7 through 3.18, and 16, update to a fixed release. As a general mitigation measure, ensure that autonomic networking is configured with a whitelist and do not remove the whitelist as a workaround.