CVE-2019-1739

Name of the Vulnerable Software and Affected Versions Cisco IOS Software (affected versions not specified) Cisco IOS XE Software (affected versions not specified)

Description A parsing issue on DNS packets in the Network-Based Application Recognition (NBAR) feature could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. This can be achieved by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled.

Recommendations For Cisco IOS Software, update to a version that addresses this vulnerability. For Cisco IOS XE Software, update to a version that addresses this vulnerability. As a temporary workaround, consider disabling the NBAR feature until a patch is available. Restrict access to the DNS packets to minimize the risk of exploitation.