CVE-2018-0156
CVE-2018-0156
In short
A flaw in Cisco's Smart Install feature allows an unauthenticated attacker to crash a switch by sending a specially crafted packet, causing a denial of service. This affects only switches configured as Smart Install clients, not directors.
Technical detail
The vulnerability stems from improper packet validation in the Smart Install feature of Cisco IOS and IOS XE software. An unauthenticated remote attacker can exploit this by sending a malicious packet to TCP port 4786 on an affected Smart Install client device, triggering an uncontrolled device reload (DoS). Smart Install director-configured devices are not vulnerable.
Summary generated and translated by AI from the official description.
A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to improper validation of packet data. An attacker could exploit this vulnerability by sending a crafted packet to an affected device on TCP port 4786. Only Smart Install client switches are affected. Cisco devices that are configured as a Smart Install director are not affected by this vulnerability. Cisco Bug IDs: CSCvd40673.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
n/a · Cisco IOS and IOS XEWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-04https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-smihttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-0156http://www.securityfocus.com/bid/103569http://www.securitytracker.com/id/1040596