Cisco IOS/ios xe DHCPv6 relay Denial of Service Vulnerability (CVE-2016-1348)
Cisco IOS/ios xe DHCPv6 relay Denial of Service Vulnerability (CVE-2016-1348)
Release date:
Updated on:
Affected Systems:
Cisco IOS
Description:
CVE (CAN) ID: CVE-2016-1348
Cisco IOS is an interconnected network operating system used on most Cisco system routers and network switches.
Cisco IOS, ios xe has a vulnerability in the DHCPv6 relay function, which allows unauthenticated remote attackers to send a constructed DHCPv6 relay message to the affected device, resulting in a DoS attack on the affected device.
<* Source: Cisco
Link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-dhcpv6
*>
Suggestion:
Vendor patch:
Cisco
-----
Cisco has released a Security Bulletin (cisco-sa-20160323-dhcpv6) and patches for this:
Cisco IOS and ios xe Software DHCPv6 Relay Denial of Service Vulnerability
Link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-dhcpv6
This article permanently updates the link address: