Multiple Cisco products are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. The vulnerabilities covered in this document are as follows: CVE-2015-7691 – Denial of Service AutoKey Malicious Message; CVE-15-7692 – Denials of Service. CVE-7703 – Configuration Directive File Overwrite Vulnerability; CVE 7702 – Spoofed Kiss-o’-Death Vulnerability. Cisco will release software updates that address these vulnerabilities.”]
Source: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-ntp