Lucene search

CiscoCISCO-SA-20170927-PROFINET

HistorySep 27, 2017 - 4:00 p.m.

Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial of Service Vulnerability

2017-09-2716:00:00

tools.cisco.com

EPSS

0.003

Percentile

72.0%

JSON

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN-DCP) for Cisco IOS Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition.

The vulnerability is due to the improper parsing of ingress PN-DCP Identify Request packets destined to an affected device. An attacker could exploit this vulnerability by sending a crafted PN-DCP Identify Request packet to an affected device and then continuing to send normal PN-DCP Identify Request packets to the device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-profinet [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-profinet”]

This advisory is part of the September 27, 2017, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 12 Cisco Security Advisories that describe 13 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: September 2017 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-63410”].

Affected configurations

Vulners

Node

ciscoiosMatch12.2se

ciscoiosMatch15.0ey

ciscoiosMatch15.0se

ciscoiosMatch15.0ex

ciscoiosMatch15.0ea

ciscoiosMatch15.2e

ciscoiosMatch15.2ey

ciscoiosMatch15.4m

ciscoiosMatch15.2eb

ciscoiosMatch15.2ea

ciscoiosMatch12.4jap

ciscoiosMatch15.0sqd

ciscoiosMatch15.3jbb

ciscoiosMatch15.3jnc

ciscoiosMatch15.3jpb

ciscoiosMatch15.3jpc

ciscoiosMatch15.3jnd

ciscoiosMatch15.3jca

ciscoiosMatch12.2\(55\)se

ciscoiosMatch12.2\(55\)se3

ciscoiosMatch12.2\(52\)se

ciscoiosMatch12.2\(58\)se

ciscoiosMatch12.2\(52\)se1

ciscoiosMatch12.2\(58\)se1

ciscoiosMatch12.2\(55\)se4

ciscoiosMatch12.2\(58\)se2

ciscoiosMatch12.2\(55\)se5

ciscoiosMatch12.2\(55\)se6

ciscoiosMatch12.2\(55\)se7

ciscoiosMatch12.2\(55\)se9

ciscoiosMatch12.2\(55\)se10

ciscoiosMatch12.2\(55\)se11

ciscoiosMatch15.0\(1\)ey

ciscoiosMatch15.0\(1\)ey1

ciscoiosMatch15.0\(1\)ey2

ciscoiosMatch15.0\(2\)ey

ciscoiosMatch15.0\(2\)ey1

ciscoiosMatch15.0\(2\)ey2

ciscoiosMatch15.0\(2\)ey3

ciscoiosMatch15.0\(2\)se

ciscoiosMatch15.0\(2\)se1

ciscoiosMatch15.0\(2\)se2

ciscoiosMatch15.0\(2\)se3

ciscoiosMatch15.0\(2\)se4

ciscoiosMatch15.0\(2\)se5

ciscoiosMatch15.0\(2\)se6

ciscoiosMatch15.0\(2\)se7

ciscoiosMatch15.0\(2\)se8

ciscoiosMatch15.0\(2\)se9

ciscoiosMatch15.0\(2\)se10

ciscoiosMatch15.0\(2\)se10a

ciscoiosMatch15.0\(2\)ex2

ciscoiosMatch15.0\(2\)ex8

ciscoiosMatch15.0\(2\)ea1

ciscoiosMatch15.2\(2\)e

ciscoiosMatch15.2\(2\)e1

ciscoiosMatch15.2\(2b\)e

ciscoiosMatch15.2\(3\)e1

ciscoiosMatch15.2\(2\)e2

ciscoiosMatch15.2\(2\)e3

ciscoiosMatch15.2\(3\)e2

ciscoiosMatch15.2\(3\)e3

ciscoiosMatch15.2\(2\)e4

ciscoiosMatch15.2\(2\)e5

ciscoiosMatch15.2\(3\)e4

ciscoiosMatch15.2\(2\)e6

ciscoiosMatch15.2\(2\)e5a

ciscoiosMatch15.2\(3\)e5

ciscoiosMatch15.2\(2\)e5b

ciscoiosMatch15.2\(4s\)e2

ciscoiosMatch15.2\(1\)ey

ciscoiosMatch15.4\(3\)m7a

ciscoiosMatch15.2\(2\)eb

ciscoiosMatch15.2\(2\)eb1

ciscoiosMatch15.2\(2\)eb2

ciscoiosMatch15.2\(2\)ea

ciscoiosMatch15.2\(2\)ea1

ciscoiosMatch15.2\(2\)ea2

ciscoiosMatch15.2\(3\)ea

ciscoiosMatch15.2\(4\)ea

ciscoiosMatch15.2\(4\)ea1

ciscoiosMatch15.2\(2\)ea3

ciscoiosMatch15.2\(4\)ea3

ciscoiosMatch15.2\(4\)ea4

ciscoiosMatch15.2\(4\)ea2

ciscoiosMatch15.2\(4\)ea5

ciscoiosMatch12.4\(25e\)jap1n

ciscoiosMatch15.0\(2\)sqd7

ciscoiosMatch15.3\(3\)jbb6a

ciscoiosMatch15.3\(3\)jnc4

ciscoiosMatch15.3\(3\)jpb

ciscoiosMatch15.3\(3\)jpc3

ciscoiosMatch15.3\(3\)jnd2

ciscoiosMatch15.3\(3\)jca7

VendorProductVersionCPE
ciscoios12.2secpe:2.3:o:cisco:ios:12.2se:*:*:*:*:*:*:*
ciscoios15.0eycpe:2.3:o:cisco:ios:15.0ey:*:*:*:*:*:*:*
ciscoios15.0secpe:2.3:o:cisco:ios:15.0se:*:*:*:*:*:*:*
ciscoios15.0excpe:2.3:o:cisco:ios:15.0ex:*:*:*:*:*:*:*
ciscoios15.0eacpe:2.3:o:cisco:ios:15.0ea:*:*:*:*:*:*:*
ciscoios15.2ecpe:2.3:o:cisco:ios:15.2e:*:*:*:*:*:*:*
ciscoios15.2eycpe:2.3:o:cisco:ios:15.2ey:*:*:*:*:*:*:*
ciscoios15.4mcpe:2.3:o:cisco:ios:15.4m:*:*:*:*:*:*:*
ciscoios15.2ebcpe:2.3:o:cisco:ios:15.2eb:*:*:*:*:*:*:*
ciscoios15.2eacpe:2.3:o:cisco:ios:15.2ea:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.2se	cpe:2.3:o:cisco:ios:12.2se:::::::*
cisco	ios	15.0ey	cpe:2.3:o:cisco:ios:15.0ey:::::::*
cisco	ios	15.0se	cpe:2.3:o:cisco:ios:15.0se:::::::*
cisco	ios	15.0ex	cpe:2.3:o:cisco:ios:15.0ex:::::::*
cisco	ios	15.0ea	cpe:2.3:o:cisco:ios:15.0ea:::::::*
cisco	ios	15.2e	cpe:2.3:o:cisco:ios:15.2e:::::::*
cisco	ios	15.2ey	cpe:2.3:o:cisco:ios:15.2ey:::::::*
cisco	ios	15.4m	cpe:2.3:o:cisco:ios:15.4m:::::::*
cisco	ios	15.2eb	cpe:2.3:o:cisco:ios:15.2eb:::::::*
cisco	ios	15.2ea	cpe:2.3:o:cisco:ios:15.2ea:::::::*