CVE-2017-12232

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 15.0 through 15.6

Description A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a misclassification of Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Recommendations For Cisco IOS versions 15.0 through 15.6, update to a newer version that addresses this vulnerability. As a temporary workaround, consider restricting access to the vulnerable device to minimize the risk of exploitation. Avoid using crafted Ethernet frames in the affected API endpoint until the issue is resolved. Cisco has released software updates that address this vulnerability, and there are no workarounds that address this vulnerability.