Test ID:	1.3.6.1.4.1.25623.1.0.106685
Category:	CISCO
Title:	Cisco IOx Data in Motion Stack Overflow Vulnerability
Summary:	A vulnerability in the Data-in-Motion (DMo) process installed with the;Cisco IOx application environment could allow an unauthenticated, remote attacker to cause a stack overflow that;could allow remote code execution with root privileges in the virtual instance running on an affected device.
Description:	Summary: A vulnerability in the Data-in-Motion (DMo) process installed with the Cisco IOx application environment could allow an unauthenticated, remote attacker to cause a stack overflow that could allow remote code execution with root privileges in the virtual instance running on an affected device. Vulnerability Insight: The vulnerability is due to insufficient bounds checking in the DMo process. An attacker could exploit this vulnerability by sending crafted packets that are forwarded to the DMo process for evaluation. Vulnerability Impact: The impacts of a successful exploit are limited to the scope of the virtual instance and do not impact the router that is hosting Cisco IOx. Solution: Update to version 1.2.4.2 CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3853 BugTraq ID: 97011 http://www.securityfocus.com/bid/97011 http://www.securitytracker.com/id/1038105
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.