Cisco IOS Software Integrated Services Routers Generation 2 denial of service (cisco-sa-20170927-rbip-dos)
High Nessus Plugin ID 103671
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version and configuration, the Cisco IOS software running on the remote device is affected by a denial of service vulnerability in it's handling of ethernet frames. An unauthenticated, remote attacker can exploit this, via a specially crafted ethernet frame, to cause the switch to stop processing traffic, requiring a device restart to regain functionality.
This vulnerability only affects Cisco ISR Generation 2 devices.
SolutionUpgrade to the relevant fixed version referenced in Cisco bug ID CSCvc03809.