Cisco Security Advisory: Cisco IOS and IOS XE Software DHCP Client Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----=0D=0AHash: SHA1=0D=0A=0D=0ACis=
co Security Advisory: Cisco IOS and IOS XE Software DHCP Client D=
enial of Service Vulnerability=0D=0A=0D=0AAdvisory ID: cisco-sa-2=
0170322-dhcpc=0D=0A=0D=0ARevision: 1.0=0D=0A=0D=0AFor Public Rele=
ase: 2017 March 22 16:00 GMT=0D=0A=0D=0ALast Updated: 2017 March =
22 16:00 GMT=0D=0A=0D=0ACVE ID(s): CVE-2017-3864=0D=0A=0D=0ACVSS =
Score v(3): 8.6 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H=0D=0A=
=0D=0A+----------------------------------------------------------=
-----------=0D=0A=0D=0ASummary=0D=0A=3D=3D=3D=3D=3D=3D=3D=0D=0AA =
vulnerability in the DHCP client implementation of Cisco IOS and =
Cisco IOS XE Software could allow an unauthenticated, remote atta=
cker to cause a denial of service (DoS) condition.=0D=0A=0D=0AThe=
 vulnerability occurs during the parsing of a crafted DHCP packet=
. An attacker could exploit this vulnerability by sending crafted=
 DHCP packets to an affected device that is configured as a DHCP =
client. A successful exploit could allow the attacker to cause a =
reload of an affected device, resulting in a DoS condition.=0D=0A=
=0D=0ACisco has released software updates that address this vulne=
rability. There are no workarounds that address this vulnerabilit=
y.=0D=0A=0D=0AThis advisory is available at the following link:=0D=0A=
https://tools.cisco.com/security/center/content/CiscoSecurityAdvi=
sory/cisco-sa-20170322-dhcpc ["https://tools.cisco.com/security/c=
enter/content/CiscoSecurityAdvisory/cisco-sa-20170322-dhcpc"]=0D=0A=
=0D=0AThis advisory is part of the March 22, 2017, release of the=
 Cisco IOS and IOS XE Software Security Advisory Bundled Publicat=
ion, which includes five Cisco Security Advisories that describe =
five vulnerabilities. All the vulnerabilities have a Security Imp=
act Rating of High. For a complete list of the advisories and lin=
ks to them, see Cisco Event Response: March 2017 Semiannual Cisco=
 IOS and IOS XE Software Security Advisory Bundled Publication ["=
http://tools.cisco.com/security/center/viewErp.x?alertId=3DERP-60=
851"].=0D=0A=0D=0A-----BEGIN PGP SIGNATURE-----=0D=0A=0D=0AiQKBBA=
EBAgBrBQJY0qJpZBxDaXNjbyBTeXN0ZW1zIFByb2R1Y3QgU2VjdXJpdHkg=0D=0AS=
W5jaWRlbnQgUmVzcG9uc2UgVGVhbSAoQ2lzY28gUFNJUlQga2V5IDIwMTYtMjAx=0D=0A=
NykgPHBzaXJ0QGNpc2NvLmNvbT4ACgkQrz2APcQAkHmgUxAAr4fO4WKcJfWEA8O5=0D=0A=
Nlj4U9E93ThFJpZErA2ikSNaWMzgXV2j9rxnUKpQbDICOWLzqlu7AuM2Gru9xrBe=0D=0A=
chLaLYOnoBf9Z4vA3qgT00IpCFSljoV524jyQCnxPtz8O6/LvA+Cq6EBw/oWfHG7=0D=0A=
ZXeNS8sx6BoglqFuheuc62/3buvDzi6IvsszOB44YX0cxcII1v/91VxxO03sgixp=0D=0A=
1Mp6c3hhsIbKNjCR4jYzh9xVNgCzqKylbqmkPL4I2O4kJdG26VHXJyVa/9rlpaNx=0D=0A=
uNPn7dH1nJtxbJB7uW9V/TR4zg+l4xleIqO+JUHSbh6Hsfhu3ZxPUnoNeeeh/hq6=0D=0A=
PGhWHwAKqg0pErGAvxY/Srai2yYXdX+qw2ywy69Af3sDDK9g3EtronFof/aEnF/5=0D=0A=
+tpdMTyX3kuw6BJhGUvgJluNLCOxidT8FKBglWG+T2LTXTJtz1y7vv9JCNI3i506=0D=0A=
FttEVONbDpIk4LFhaIE9uG13NifTtPxq1N3lQHUGTKrCWPWjLMJ3tUJfDclu1vG0=0D=0A=
N8/tZvtv6paKnIC+M3tC0EBYYfzNXxfbXDipWbnWLcyA4yY0BoDedJ5cV4X8aDyw=0D=0A=
U7ZzL/GHmD91DNtgxVjUDfOhgcc7Ce0UOfeaVvV1MzbLFMYhThIDOr74cNyN0Vlr=0D=0A=
joZYd+7JsSr+SHkmL7bWnRsNEbU=3D=0D=0A=3DUk+n=0D=0A-----END PGP SIG=
NATURE-----=0D=0A