2 matches found
Cisco IOS XE NTP Packet Handling Remote DoS (cisco-sa-20160804-wedge)
According to its self-reported version and configuration, the Cisco IOS XE software running on the remote device is affected by a denial of service vulnerability due to insufficient checks on clearing invalid Network Time Protocol NTP packets from the interface queue. An unauthenticated, remote...
CVE-2016-1478
CVE-2016-1478 affects Cisco IOS and IOS XE: Cisco IOS versions 15.5(3)S3, 15.6(1)S2, 15.6(2)S1, and 15.6(2)T1 fail to properly dequeue/clear invalid NTP packets, enabling an unauthenticated remote attacker to cause an interface wedge and DoS by sending many crafted NTP packets. The issue stems fr...