Cisco IOS and IOS XE Software Data in Motion Denial of Service Vulnerability

A vulnerability in the Data in Motion (DMo) application in Cisco IOS and IOS XE software with the IOx feature set could allow an unauthenticated, remote attacker to to cause a denial of service (DoS) condition in the DMo process.

The vulnerability is due to insufficient input validation by the affected software. An attacker could exploit this vulnerability by sending a specially crafted packet to the targeted system. An exploit could allow the attacker to cause a DoS condition on the targeted system.

Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.

This advisory is available at the following link: http://ift.tt/2cwM8eK A vulnerability in the Data in Motion (DMo) application in Cisco IOS and IOS XE software with the IOx feature set could allow an unauthenticated, remote attacker to to cause a denial of service (DoS) condition in the DMo process.

The vulnerability is due to insufficient input validation by the affected software. An attacker could exploit this vulnerability by sending a specially crafted packet to the targeted system. An exploit could allow the attacker to cause a DoS condition on the targeted system.

Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available.

This advisory is available at the following link: http://ift.tt/2cwM8eK
Security Impact Rating: Medium
CVE: CVE-2016-6403

from Cisco Security Advisory http://ift.tt/2cwM8eK