CVE-2017-12234

Name of the Vulnerable Software and Affected Versions Cisco IOS Software versions 12.4 through 15.6

Description The issue is due to the improper parsing of crafted Common Industrial Protocol (CIP) packets destined to an affected device, which could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition. An attacker could exploit this by sending crafted CIP packets to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Recommendations For Cisco IOS Software versions 12.4 through 15.6, update to a version that includes the software updates released by Cisco that address these vulnerabilities. As a temporary workaround, consider restricting access to the CIP feature to minimize the risk of exploitation. Avoid using the CIP protocol until the issue is resolved. There are no workarounds that address these vulnerabilities.