This vulnerability affects the following products if they are running a vulnerable release of Cisco IOS XE Software:
- Cisco 5700 Series Wireless LAN Controllers
- Cisco Catalyst 3650 Series Switches
- Cisco Catalyst 3850 Series Switches
- Cisco Catalyst 4500E Series Switches
- Cisco Catalyst 4500X Series Switches
This vulnerability is not configuration-specific. All the preceding products are vulnerable if they are running an vulnerable release of Cisco IOS XE Software. For information about vulnerable software releases, consult the Cisco bug IDs at the top of this advisory.
To exploit this vulnerability, the attacker must have privileged access to an affected system and must also be able transfer a crafted file and execute privileged commands on the system.
Determining the Cisco IOS XE Software Release
To determine which Cisco IOS XE Software release is running on a device, administrators can log in to the device, use the show version
command in the command-line interface (CLI), and then refer to the system banner that appears. If the device is running Cisco IOS XE Software, the system banner displays Cisco IOS XE Software
or similar text.
The following example shows the output of the show version
command on a device that is running Cisco IOS XE Software Release 3.6.5E:
Router> show version
Cisco IOS Software, IOS-XE Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 03.06.05.E RELEASE SOFTWARE7 (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Thu 02-Jun-16 09:03 by prod_rel_team
For information about the naming and numbering conventions for Cisco IOS XE Software releases, see White Paper: Cisco IOS and NX-OS Software Reference Guide
No other Cisco products are currently known to be affected by this vulnerability.