Cisco IOS Software NAT denial of service (cisco-sa-20170927-nat)
High Nessus Plugin ID 103669
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version and configuration, the Cisco IOS software running on the remote device is affected by a denial of service vulnerability in the Network Address Translation (NAT) feature. An unauthenticated, remote attacker can exploit this, via specially crafted NAT requests, to cause the switch to stop processing traffic, requiring a device restart to regain functionality.
SolutionUpgrade to the relevant fixed version referenced in Cisco bug ID CSCvc57217