Cisco CBOS 2.3.8 and previous versions allows remote malicious users to cause a denial of service via an ICMP ECHO REQUEST (ping) with the IP Record Route option set.
cisco cbos