A vulnerability in the ipsecmgr process of Cisco ASR 5000 Software could allow an unauthenticated, remote attacker to cause the ipsecmgr process to reload.
The vulnerability is due to a logical error while parsing IKE packets. An attacker could exploit this vulnerability by submitting malformed IKE packets to the targeted system.
There are no workarounds that address this vulnerability.
This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-asr [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-asr”]
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | asr_5000_series_software | any | cpe:2.3:a:cisco:asr_5000_series_software:any:*:*:*:*:*:*:* |
cisco | asr_9904 | 5000_series_software | cpe:2.3:h:cisco:asr_9904:5000_series_software:*:*:*:*:*:*:* |