Test Kennung:	1.3.6.1.4.1.25623.1.0.106299
Kategorie:	CISCO
Titel:	Cisco IOS XE Software NAT Denial of Service Vulnerability
Zusammenfassung:	A vulnerability in the implementation of Network Address Translation (NAT);functionality in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected;device to reload.
Beschreibung:	Summary: A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. Vulnerability Insight: The vulnerability is due to improper handling of malformed ICMP packets by the affected software. An attacker could exploit this vulnerability by sending crafted ICMP packets that require NAT processing by an affected device. Vulnerability Impact: A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition. Solution: See the referenced vendor advisory for a solution. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-6378 BugTraq ID: 93200 http://www.securityfocus.com/bid/93200 Cisco Security Advisory: 20160928 Cisco IOS XE Software NAT Denial of Service Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-esp-nat http://www.securitytracker.com/id/1036914
Copyright	Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.