Cisco IOS Smart Install Packet Image List Parameter Handling DoS (cisco-sa-20160323-smi)

According to its self-reported version, the Cisco IOS software running on the remote device is affected by a denial of service vulnerability in the Smart Install client feature due to improper handling of image list parameters. An unauthenticated, remote attacker can exploit this issue, via craft...

CVE-2016-1349

The CVE-2016-1349 vulnerability affects Cisco IOS (12.2, 15.0, 15.2) and IOS XE (3.2–3.7) where the Smart Install client mishandles image list parameters in Smart Install packets. An unauthenticated, remote attacker can send crafted packets (to TCP 4786), potentially causing a denial-of-service v...