CVE-2017-6603 : Security Advisory and Response

Cisco ASR 903 and ASR 920 Series Devices are affected by a security vulnerability that could lead to a denial of service (DoS) situation due to incorrect processing of IPv6 packets.

Understanding CVE-2017-6603

This CVE involves a vulnerability in Cisco ASR 903 or ASR 920 Series Devices when operating with an RSP2 card, allowing an unauthenticated attacker to exploit the system.

What is CVE-2017-6603?

The vulnerability in Cisco ASR 903 or ASR 920 Series Devices can be exploited by a nearby attacker without authentication, potentially causing a DoS situation on the targeted system.

The Impact of CVE-2017-6603

The vulnerability can result in a denial of service (DoS) condition on the affected system due to incorrect processing of IPv6 packets.

Technical Details of CVE-2017-6603

Cisco ASR 903 and ASR 920 Series Devices are susceptible to exploitation due to the following technical details:

Vulnerability Description

Vulnerability Type: Denial of Service
Exploitation: Unauthenticated attacker
Attack Vector: Adjacent attacker

Affected Systems and Versions

Affected Product: Cisco ASR 903 and ASR 920 Series Devices
Affected Versions: 15.4(3)S3.15
Fixed Versions: 15.6(2)SP, 15.6(1.31)SP

Exploitation Mechanism

The vulnerability allows a nearby attacker to exploit the system without authentication, potentially leading to a DoS situation.

Mitigation and Prevention

To address CVE-2017-6603, consider the following mitigation strategies:

Immediate Steps to Take

Apply the provided fixed versions: 15.6(2)SP, 15.6(1.31)SP
Monitor network traffic for any suspicious activity
Implement access controls to limit unauthorized access

Long-Term Security Practices

Regularly update and patch systems to prevent vulnerabilities
Conduct security audits and assessments to identify potential risks

Patching and Updates

Ensure all affected systems are updated to the fixed versions: 15.6(2)SP, 15.6(1.31)SP