Test ID:	1.3.6.1.4.1.25623.1.0.106299
Category:	CISCO
Title:	Cisco IOS XE Software NAT Denial of Service Vulnerability
Summary:	A vulnerability in the implementation of Network Address Translation (NAT);functionality in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected;device to reload.
Description:	Summary: A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. Vulnerability Insight: The vulnerability is due to improper handling of malformed ICMP packets by the affected software. An attacker could exploit this vulnerability by sending crafted ICMP packets that require NAT processing by an affected device. Vulnerability Impact: A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition. Solution: See the referenced vendor advisory for a solution. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-6378 BugTraq ID: 93200 http://www.securityfocus.com/bid/93200 Cisco Security Advisory: 20160928 Cisco IOS XE Software NAT Denial of Service Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-esp-nat http://www.securitytracker.com/id/1036914
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.