A vulnerability in the FTP application layer gateway (ALG) functionality used by Network Address Translation (NAT), NAT IPv6 to IPv4 (NAT64), and the Zone-Based Policy Firewall (ZBFW) in Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause an affected device to reload. The vulnerability is due to a buffer overflow that occurs when an affected device inspects certain FTP traffic. An attacker could exploit this vulnerability by performing a specific FTP transfer through the device. A successful exploit could allow the malicious user to cause the device to reload.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios 16.6.5 |
||
cisco ios 16.9.1 |
||
cisco ios 16.9.2 |
||
cisco ios |
||
cisco ios 16.6.4 |