CVE-2017-6599

Name of the Vulnerable Software and Affected Versions Cisco IOS XR Software versions 6.1.1.BASE through 6.2.1.BASE

Description A vulnerability in Google-defined remote procedure call (gRPC) handling could allow an unauthenticated, remote attacker to cause the Event Management Service daemon (emsd) to crash due to a system memory leak, resulting in a denial of service (DoS) condition. The vulnerability is due to improper handling of gRPC requests. An attacker could exploit this vulnerability by sending malformed gRPC requests repeatedly to the affected device.

Recommendations For versions 6.1.1.BASE through 6.2.1.BASE, update to a fixed release such as 6.2.1.22i.MGBL, 6.1.22.9i.MGBL, 6.1.21.12i.MGBL, or 6.1.2.13i.MGBL to resolve the issue. As a temporary workaround, consider restricting access to the gRPC service to minimize the risk of exploitation.