Cisco IOS Software CIP Multiple Vulnerabilities (cisco-sa-20170927-cip)
High Nessus Plugin ID 103668
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version and configuration, the Cisco IOS software running on the remote device is affected by multiple denial of service vulnerabilities in the Common Industrial Protocol (CIP) feature due to improper processing of unusual but valid CIP requests. An unauthenticated, remote attacker can exploit this, via specially crafted CIP requests, to cause the switch to stop processing traffic, requiring a device restart to regain functionality.
SolutionUpgrade to the relevant fixed version referenced in Cisco bug IDs CSCuz95334 and CSCvc43709.