CVE-2017-6663

Name of the Vulnerable Software and Affected Versions Cisco IOS Software and Cisco IOS XE Software versions Denali-16.2.1 through Denali-16.3.1

Description A vulnerability in the Autonomic Networking feature could allow an unauthenticated, adjacent attacker to cause autonomic nodes of an affected system to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to an unknown condition in the Autonomic Networking code of the affected software. An attacker could exploit this vulnerability by replaying captured packets to reset the Autonomic Control Plane (ACP) channel of an affected system. A successful exploit could allow the attacker to reset the ACP channel of an affected system and consequently cause the affected device to reload, resulting in a DoS condition.

Recommendations As a temporary workaround, consider restricting access to the Autonomic Networking feature until a patch is available. Restrict access to the Autonomic Control Plane (ACP) channel to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.