CVE-2017-12233

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.4 through 15.6

Description The issue is due to insufficient input validation when handling CIP packets, allowing a remote attacker to cause a device reload and denial of service (DoS) using a specially crafted CIP packet. An attacker could exploit this by sending crafted CIP packets to an affected device, potentially causing it to reload. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Cisco IOS versions 12.4 through 15.6, update to a version that includes the fix for this issue, as Cisco has released software updates that address these vulnerabilities. At the moment, there is no information about other workarounds that address these vulnerabilities.