Exploited
critical
9
CWE
119
Advisory Published
Updated

CVE-2017-6744: Cisco IOS Software SNMP Remote Code Execution Vulnerability

First published: Mon Jul 17 2017(Updated: )

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system can be used to exploit these vulnerabilities. The vulnerabilities are due to a buffer overflow condition in the SNMP subsystem of the affected software. The vulnerabilities affect all versions of SNMP - Versions 1, 2c, and 3. To exploit these vulnerabilities via SNMP Version 2c or earlier, the attacker must know the SNMP read-only community string for the affected system. To exploit these vulnerabilities via SNMP Version 3, the attacker must have user credentials for the affected system. A successful exploit could allow the attacker to execute arbitrary code and obtain full control of the affected system or cause the affected system to reload. Customers are advised to apply the workaround as contained in the Workarounds section below. Fixed software information is available via the Cisco IOS Software Checker. All devices that have enabled SNMP and have not explicitly excluded the affected MIBs or OIDs should be considered vulnerable. There are workarounds that address these vulnerabilities.

Credit: ykramarz@cisco.com psirt@cisco.com

Affected SoftwareAffected VersionHow to fix
Puppet Cisco IOS=12.2\(33\)sxi
Puppet Cisco IOS=12.2\(33\)sxi1
Puppet Cisco IOS=12.2\(50\)se
Puppet Cisco IOS=12.2\(50\)se1
Puppet Cisco IOS=12.2\(50\)se2
Puppet Cisco IOS=12.2\(50\)se3
Puppet Cisco IOS=12.2\(50\)se4
Puppet Cisco IOS=12.2\(50\)se5
Puppet Cisco IOS=12.2\(50\)sg
Puppet Cisco IOS=12.2\(50\)sg1
Puppet Cisco IOS=12.2\(50\)sg2
Puppet Cisco IOS=12.2\(50\)sg3
Puppet Cisco IOS=12.2\(50\)sg4
Puppet Cisco IOS=12.2\(50\)sg5
Puppet Cisco IOS=12.2\(50\)sg6
Puppet Cisco IOS=12.2\(50\)sg7
Puppet Cisco IOS=12.2\(50\)sg8
Puppet Cisco IOS=12.2\(50\)sq
Puppet Cisco IOS=12.2\(50\)sq1
Puppet Cisco IOS=12.2\(50\)sq2
Puppet Cisco IOS=12.2\(50\)sq3
Puppet Cisco IOS=12.2\(50\)sq4
Puppet Cisco IOS=12.2\(50\)sq5
Puppet Cisco IOS=12.2\(50\)sq6
Puppet Cisco IOS=12.2\(50\)sq7
Puppet Cisco IOS=12.2\(52\)ex
Puppet Cisco IOS=12.2\(52\)ex1
Puppet Cisco IOS=12.2\(52\)ey
Puppet Cisco IOS=12.2\(52\)ey1
Puppet Cisco IOS=12.2\(52\)ey1b
Puppet Cisco IOS=12.2\(52\)ey1c
Puppet Cisco IOS=12.2\(52\)ey2
Puppet Cisco IOS=12.2\(52\)ey2a
Puppet Cisco IOS=12.2\(52\)ey3
Puppet Cisco IOS=12.2\(52\)ey3a
Puppet Cisco IOS=12.2\(52\)ey4
Puppet Cisco IOS=12.2\(52\)se
Puppet Cisco IOS=12.2\(52\)se1
Puppet Cisco IOS=12.2\(52\)sg
Puppet Cisco IOS=12.2\(52\)xo
Puppet Cisco IOS=12.2\(53\)ex
Puppet Cisco IOS=12.2\(53\)ey
Puppet Cisco IOS=12.2\(53\)ez
Puppet Cisco IOS=12.2\(53\)se
Puppet Cisco IOS=12.2\(53\)se1
Puppet Cisco IOS=12.2\(53\)se2
Puppet Cisco IOS=12.2\(53\)sg
Puppet Cisco IOS=12.2\(53\)sg1
Puppet Cisco IOS=12.2\(53\)sg2
Puppet Cisco IOS=12.2\(53\)sg3
Puppet Cisco IOS=12.2\(53\)sg4
Puppet Cisco IOS=12.2\(53\)sg5
Puppet Cisco IOS=12.2\(53\)sg6
Puppet Cisco IOS=12.2\(53\)sg7
Puppet Cisco IOS=12.2\(53\)sg8
Puppet Cisco IOS=12.2\(53\)sg9
Puppet Cisco IOS=12.2\(53\)sg10
Puppet Cisco IOS=12.2\(53\)sg11
Puppet Cisco IOS=12.2\(54\)se
Puppet Cisco IOS=12.2\(54\)sg
Puppet Cisco IOS=12.2\(54\)sg1
Puppet Cisco IOS=12.2\(54\)wo
Puppet Cisco IOS=12.2\(54\)xo
Puppet Cisco IOS=12.2\(55\)ex
Puppet Cisco IOS=12.2\(55\)ex1
Puppet Cisco IOS=12.2\(55\)ex2
Puppet Cisco IOS=12.2\(55\)ex3
Puppet Cisco IOS=12.2\(55\)ey
Puppet Cisco IOS=12.2\(55\)ez
Puppet Cisco IOS=12.2\(55\)se
Puppet Cisco IOS=12.2\(55\)se1
Puppet Cisco IOS=12.2\(55\)se2
Puppet Cisco IOS=12.2\(55\)se3
Puppet Cisco IOS=12.2\(55\)se4
Puppet Cisco IOS=12.2\(55\)se5
Puppet Cisco IOS=12.2\(55\)se6
Puppet Cisco IOS=12.2\(55\)se7
Puppet Cisco IOS=12.2\(55\)se8
Puppet Cisco IOS=12.2\(55\)se9
Puppet Cisco IOS=12.2\(55\)se10
Puppet Cisco IOS=12.2\(55\)se11
Puppet Cisco IOS=12.2\(58\)ex
Puppet Cisco IOS=12.2\(58\)ey
Puppet Cisco IOS=12.2\(58\)ey1
Puppet Cisco IOS=12.2\(58\)ey2
Puppet Cisco IOS=12.2\(58\)ez
Puppet Cisco IOS=12.2\(58\)se
Puppet Cisco IOS=12.2\(58\)se1
Puppet Cisco IOS=12.2\(58\)se2
Puppet Cisco IOS=12.2\(60\)ez
Puppet Cisco IOS=12.2\(60\)ez1
Puppet Cisco IOS=12.2\(60\)ez2
Puppet Cisco IOS=12.2\(60\)ez3
Puppet Cisco IOS=12.2\(60\)ez4
Puppet Cisco IOS=12.2\(60\)ez5
Puppet Cisco IOS=12.2\(60\)ez6
Puppet Cisco IOS=12.2\(60\)ez7
Puppet Cisco IOS=12.2\(60\)ez8
Puppet Cisco IOS=12.2\(60\)ez9
Puppet Cisco IOS=12.2\(60\)ez10
Puppet Cisco IOS=12.2\(60\)ez11
Puppet Cisco IOS=15.0\(1\)ex
Puppet Cisco IOS=15.0\(1\)ey
Puppet Cisco IOS=15.0\(1\)ey1
Puppet Cisco IOS=15.0\(1\)ey2
Puppet Cisco IOS=15.0\(1\)se
Puppet Cisco IOS=15.0\(1\)se1
Puppet Cisco IOS=15.0\(1\)se2
Puppet Cisco IOS=15.0\(1\)se3
Puppet Cisco IOS=15.0\(1\)xo
Puppet Cisco IOS=15.0\(1\)xo1
Puppet Cisco IOS=15.0\(2\)ea1
Puppet Cisco IOS=15.0\(2\)eb
Puppet Cisco IOS=15.0\(2\)ec
Puppet Cisco IOS=15.0\(2\)ed
Puppet Cisco IOS=15.0\(2\)ed1
Puppet Cisco IOS=15.0\(2\)eh
Puppet Cisco IOS=15.0\(2\)ej
Puppet Cisco IOS=15.0\(2\)ej1
Puppet Cisco IOS=15.0\(2\)ek
Puppet Cisco IOS=15.0\(2\)ek1
Puppet Cisco IOS=15.0\(2\)ex
Puppet Cisco IOS=15.0\(2\)ex1
Puppet Cisco IOS=15.0\(2\)ex2
Puppet Cisco IOS=15.0\(2\)ex3
Puppet Cisco IOS=15.0\(2\)ex4
Puppet Cisco IOS=15.0\(2\)ex5
Puppet Cisco IOS=15.0\(2\)ex8
Puppet Cisco IOS=15.0\(2\)ex10
Puppet Cisco IOS=15.0\(2\)ey
Puppet Cisco IOS=15.0\(2\)ey1
Puppet Cisco IOS=15.0\(2\)ey2
Puppet Cisco IOS=15.0\(2\)ey3
Puppet Cisco IOS=15.0\(2\)ez
Puppet Cisco IOS=15.0\(2\)se
Puppet Cisco IOS=15.0\(2\)se1
Puppet Cisco IOS=15.0\(2\)se2
Puppet Cisco IOS=15.0\(2\)se3
Puppet Cisco IOS=15.0\(2\)se4
Puppet Cisco IOS=15.0\(2\)se5
Puppet Cisco IOS=15.0\(2\)se6
Puppet Cisco IOS=15.0\(2\)se7
Puppet Cisco IOS=15.0\(2\)se9
Puppet Cisco IOS=15.0\(2\)se10
Puppet Cisco IOS=15.0\(2\)se10a
Puppet Cisco IOS=15.0\(2\)sg
Puppet Cisco IOS=15.0\(2\)sg1
Puppet Cisco IOS=15.0\(2\)sg2
Puppet Cisco IOS=15.0\(2\)sg3
Puppet Cisco IOS=15.0\(2\)sg4
Puppet Cisco IOS=15.0\(2\)sg5
Puppet Cisco IOS=15.0\(2\)sg6
Puppet Cisco IOS=15.0\(2\)sg7
Puppet Cisco IOS=15.0\(2\)sg8
Puppet Cisco IOS=15.0\(2\)sg9
Puppet Cisco IOS=15.0\(2\)sg10
Puppet Cisco IOS=15.0\(2\)sg11
Puppet Cisco IOS=15.0\(2\)sqd
Puppet Cisco IOS=15.0\(2\)sqd1
Puppet Cisco IOS=15.0\(2\)sqd2
Puppet Cisco IOS=15.0\(2\)sqd3
Puppet Cisco IOS=15.0\(2\)sqd5
Puppet Cisco IOS=15.0\(2\)sqd6
Puppet Cisco IOS=15.0\(2\)xo
Puppet Cisco IOS=15.0\(2a\)ex5
Puppet Cisco IOS=15.0\(2a\)se9
Puppet Cisco IOS=15.1\(1\)sg
Puppet Cisco IOS=15.1\(1\)sg1
Puppet Cisco IOS=15.1\(1\)sg2
Puppet Cisco IOS=15.1\(2\)sg
Puppet Cisco IOS=15.1\(2\)sg1
Puppet Cisco IOS=15.1\(2\)sg2
Puppet Cisco IOS=15.1\(2\)sg3
Puppet Cisco IOS=15.1\(2\)sg4
Puppet Cisco IOS=15.1\(2\)sg5
Puppet Cisco IOS=15.1\(2\)sg6
Puppet Cisco IOS=15.1\(2\)sg7
Puppet Cisco IOS=15.1\(2\)sg8
Puppet Cisco IOS=15.2\(1\)e
Puppet Cisco IOS=15.2\(1\)e1
Puppet Cisco IOS=15.2\(1\)e2
Puppet Cisco IOS=15.2\(1\)e3
Puppet Cisco IOS=15.2\(1\)ey
Puppet Cisco IOS=15.2\(1\)sy
Puppet Cisco IOS=15.2\(1\)sy0a
Puppet Cisco IOS=15.2\(1\)sy1
Puppet Cisco IOS=15.2\(1\)sy1a
Puppet Cisco IOS=15.2\(1\)sy2
Puppet Cisco IOS=15.2\(1\)sy3
Puppet Cisco IOS=15.2\(1\)sy4
Puppet Cisco IOS=15.2\(2\)e
Puppet Cisco IOS=15.2\(2\)e1
Puppet Cisco IOS=15.2\(2\)e2
Puppet Cisco IOS=15.2\(2\)e3
Puppet Cisco IOS=15.2\(2\)e4
Puppet Cisco IOS=15.2\(2\)e5
Puppet Cisco IOS=15.2\(2\)e5a
Puppet Cisco IOS=15.2\(2\)ea1
Puppet Cisco IOS=15.2\(2\)ea2
Puppet Cisco IOS=15.2\(2\)ea3
Puppet Cisco IOS=15.2\(2\)eb
Puppet Cisco IOS=15.2\(2\)eb1
Puppet Cisco IOS=15.2\(2\)eb2
Puppet Cisco IOS=15.2\(2\)gc
Puppet Cisco IOS=15.2\(2\)sy
Puppet Cisco IOS=15.2\(2\)sy1
Puppet Cisco IOS=15.2\(2\)sy2
Puppet Cisco IOS=15.2\(2\)t
Puppet Cisco IOS=15.2\(2\)t1
Puppet Cisco IOS=15.2\(2\)t2
Puppet Cisco IOS=15.2\(2\)t3
Puppet Cisco IOS=15.2\(2\)t4
Puppet Cisco IOS=15.2\(2a\)e1
Puppet Cisco IOS=15.2\(3\)e
Puppet Cisco IOS=15.2\(3\)e1
Puppet Cisco IOS=15.2\(3\)e2
Puppet Cisco IOS=15.2\(3\)e3
Puppet Cisco IOS=15.2\(3\)ea
Puppet Cisco IOS=15.2\(3\)gc
Puppet Cisco IOS=15.2\(3\)gc1
Puppet Cisco IOS=15.2\(3\)t
Puppet Cisco IOS=15.2\(3\)t1
Puppet Cisco IOS=15.2\(3\)t2
Puppet Cisco IOS=15.2\(3\)t3
Puppet Cisco IOS=15.2\(3\)t4
Puppet Cisco IOS=15.2\(3a\)e
Puppet Cisco IOS=15.2\(3m\)e2
Puppet Cisco IOS=15.2\(3m\)e3
Puppet Cisco IOS=15.2\(4\)e
Puppet Cisco IOS=15.2\(4\)e1
Puppet Cisco IOS=15.2\(4\)e2
Puppet Cisco IOS=15.2\(4\)e3
Puppet Cisco IOS=15.2\(4\)e4
Puppet Cisco IOS=15.2\(4\)ea
Puppet Cisco IOS=15.2\(4\)ea1
Puppet Cisco IOS=15.2\(4\)ea3
Puppet Cisco IOS=15.2\(4\)ea4
Puppet Cisco IOS=15.2\(4\)ec1
Puppet Cisco IOS=15.2\(4\)gc
Puppet Cisco IOS=15.2\(4\)gc1
Puppet Cisco IOS=15.2\(4\)gc2
Puppet Cisco IOS=15.2\(4\)gc3
Puppet Cisco IOS=15.2\(4\)m
Puppet Cisco IOS=15.2\(4\)m1
Puppet Cisco IOS=15.2\(4\)m2
Puppet Cisco IOS=15.2\(4\)m3
Puppet Cisco IOS=15.2\(4\)m4
Puppet Cisco IOS=15.2\(4\)m5
Puppet Cisco IOS=15.2\(4\)m6
Puppet Cisco IOS=15.2\(4\)m6a
Puppet Cisco IOS=15.2\(4\)m7
Puppet Cisco IOS=15.2\(4\)m8
Puppet Cisco IOS=15.2\(4\)m9
Puppet Cisco IOS=15.2\(4\)m10
Puppet Cisco IOS=15.2\(4\)m11
Puppet Cisco IOS=15.2\(4m\)e1
Puppet Cisco IOS=15.2\(4m\)e3
Puppet Cisco IOS=15.2\(4p\)e1
Puppet Cisco IOS=15.2\(5\)e
Puppet Cisco IOS=15.2\(5\)e1
Puppet Cisco IOS=15.2\(5\)e2
Puppet Cisco IOS=15.2\(5\)e2a
Puppet Cisco IOS=15.2\(5\)ea
Puppet Cisco IOS=15.2\(5\)ex
Puppet Cisco IOS=15.2\(5a\)e
Puppet Cisco IOS=15.2\(5a\)e1
Puppet Cisco IOS=15.2\(5b\)e
Puppet Cisco IOS=15.2\(5c\)e
Puppet Cisco IOS=15.3\(1\)sy
Puppet Cisco IOS=15.3\(1\)sy2
Puppet Cisco IOS=15.3\(1\)t
Puppet Cisco IOS=15.3\(1\)t1
Puppet Cisco IOS=15.3\(1\)t2
Puppet Cisco IOS=15.3\(1\)t3
Puppet Cisco IOS=15.3\(1\)t4
Puppet Cisco IOS=15.3\(2\)t
Puppet Cisco IOS=15.3\(2\)t1
Puppet Cisco IOS=15.3\(2\)t2
Puppet Cisco IOS=15.3\(2\)t3
Puppet Cisco IOS=15.3\(2\)t4
Puppet Cisco IOS=15.3\(3\)m
Puppet Cisco IOS=15.3\(3\)m1
Puppet Cisco IOS=15.3\(3\)m2
Puppet Cisco IOS=15.3\(3\)m3
Puppet Cisco IOS=15.3\(3\)m4
Puppet Cisco IOS=15.3\(3\)m5
Puppet Cisco IOS=15.3\(3\)m6
Puppet Cisco IOS=15.3\(3\)m7
Puppet Cisco IOS=15.3\(3\)m9
Puppet Cisco IOS=15.4\(1\)cg
Puppet Cisco IOS=15.4\(1\)cg1
Puppet Cisco IOS=15.4\(1\)sy
Puppet Cisco IOS=15.4\(1\)sy1
Puppet Cisco IOS=15.4\(1\)sy2
Puppet Cisco IOS=15.4\(1\)t
Puppet Cisco IOS=15.4\(1\)t1
Puppet Cisco IOS=15.4\(1\)t2
Puppet Cisco IOS=15.4\(1\)t3
Puppet Cisco IOS=15.4\(1\)t4
Puppet Cisco IOS=15.4\(2\)cg
Puppet Cisco IOS=15.4\(2\)t
Puppet Cisco IOS=15.4\(2\)t1
Puppet Cisco IOS=15.4\(2\)t2
Puppet Cisco IOS=15.4\(2\)t3
Puppet Cisco IOS=15.4\(2\)t4
Puppet Cisco IOS=15.4\(3\)m
Puppet Cisco IOS=15.4\(3\)m1
Puppet Cisco IOS=15.4\(3\)m2
Puppet Cisco IOS=15.4\(3\)m3
Puppet Cisco IOS=15.4\(3\)m4
Puppet Cisco IOS=15.4\(3\)m5
Puppet Cisco IOS=15.4\(3\)m6
Puppet Cisco IOS=15.4\(3\)m6a
Puppet Cisco IOS=15.4\(3\)m7
Puppet Cisco IOS=15.5\(1\)sy
Puppet Cisco IOS=15.5\(1\)t
Puppet Cisco IOS=15.5\(1\)t1
Puppet Cisco IOS=15.5\(1\)t2
Puppet Cisco IOS=15.5\(1\)t3
Puppet Cisco IOS=15.5\(1\)t4
Puppet Cisco IOS=15.5\(2\)t
Puppet Cisco IOS=15.5\(2\)t1
Puppet Cisco IOS=15.5\(2\)t2
Puppet Cisco IOS=15.5\(2\)t3
Puppet Cisco IOS=15.5\(2\)t4
Puppet Cisco IOS=15.5\(3\)m0a
Puppet Cisco IOS=15.5\(3\)m1
Puppet Cisco IOS=15.5\(3\)m2
Puppet Cisco IOS=15.5\(3\)m3
Puppet Cisco IOS=15.5\(3\)m4
Puppet Cisco IOS=15.5\(3\)m4a
Puppet Cisco IOS=15.5\(3\)m5
Puppet Cisco IOS=15.5\(3\)m6
Puppet Cisco IOS=15.6\(1\)t
Puppet Cisco IOS=15.6\(1\)t0a
Puppet Cisco IOS=15.6\(1\)t1
Puppet Cisco IOS=15.6\(1\)t2
Puppet Cisco IOS=15.6\(2\)t
Puppet Cisco IOS=15.6\(2\)t1
Puppet Cisco IOS=15.6\(2\)t2
Puppet Cisco IOS=15.6\(3\)m
Puppet Cisco IOS=15.6\(3\)m0a
Puppet Cisco IOS=15.6\(3\)m1
Puppet Cisco IOS=15.6\(3\)m1b
Puppet Cisco IOS=15.6\(3\)m2
Puppet Cisco IOS=15.6\(3\)m2a
Puppet Cisco IOS=15.6\(3\)m3
Puppet Cisco IOS

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2017-6744?

    CVE-2017-6744 is classified as a high-severity vulnerability, allowing remote code execution on affected Cisco devices.

  • How do I fix CVE-2017-6744?

    To remediate CVE-2017-6744, upgrade the affected Cisco IOS or IOS XE Software to a fixed version provided by Cisco.

  • What are the affected versions for CVE-2017-6744?

    CVE-2017-6744 impacts multiple versions of Cisco IOS and IOS XE, including 12.2(33)SXI, 12.2(50)SE, and others listed in the security advisory.

  • Can CVE-2017-6744 be exploited remotely?

    Yes, CVE-2017-6744 can be exploited remotely by authenticated attackers to execute arbitrary code or cause a denial-of-service condition.

  • What products are impacted by CVE-2017-6744?

    CVE-2017-6744 affects various Cisco IOS and IOS XE devices used in enterprise networking environments.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203