The PPPoE establishment implementation in Cisco IOS XE 3.5.0S on ASR 1000 devices allows remote attackers to cause a denial of service (device reload) by sending malformed PPPoE Active Discovery Request (PADR) packets on the local network, aka Bug ID CSCty94202.
http://www.securitytracker.com/id/1032805
http://tools.cisco.com/security/center/viewAlert.x?alertId=39675