Test ID:	1.3.6.1.4.1.25623.1.0.106776
Category:	CISCO
Title:	Cisco IOS Software EnergyWise Denial of Service Vulnerabilities
Summary:	Multiple vulnerabilities in the EnergyWise module of Cisco IOS Software;could allow an unauthenticated, remote attacker to cause a buffer overflow condition or a reload of an affected;device, leading to a denial of service (DoS) condition.
Description:	Summary: Multiple vulnerabilities in the EnergyWise module of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a buffer overflow condition or a reload of an affected device, leading to a denial of service (DoS) condition. Vulnerability Insight: These vulnerabilities are due to improper parsing of crafted EnergyWise packets destined to an affected device. An attacker could exploit these vulnerabilities by sending crafted EnergyWise packets to be processed by an affected device. Vulnerability Impact: An exploit could allow the attacker to cause a buffer overflow condition or a reload of the affected device, leading to a DoS condition. Solution: See the referenced vendor advisory for a solution. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3860 BugTraq ID: 97935 http://www.securityfocus.com/bid/97935 http://www.securitytracker.com/id/1038313 Common Vulnerability Exposure (CVE) ID: CVE-2017-3861 Common Vulnerability Exposure (CVE) ID: CVE-2017-3862 Common Vulnerability Exposure (CVE) ID: CVE-2017-3863
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.