Cisco IOS XE Software CVE-2016-6441 Buffer Overflow Vulnerability
Cisco IOS XE Software is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Attackers can exploit this issue to execute arbitrary code or cause reload of the affected device, resulting in denial-of-service conditions.
This issue being tracked by Cisco Bug ID CSCuy15175.
Note: Cisco ASR 900 Series Aggregation Services Routers (ASR902, ASR903, and ASR907) running the vulnerable versions of the IOS XE Software are vulnerable.