Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> CISCO >> CSCec16481

Vulnerability Assessment Details


Vulnerability Assessment Summary
Uses SNMP to determine if a flaw is present

Detailed Explanation for this Vulnerability Assessment

The target is a Cisco device running a version of IOS that is vulnerable
to a DoS attack from a malformed OSPF packet. Given knowledge of OSPF
area number, netmask, hello, and dead timers that are configured on the
targeted interface, a remote attacker can send a malformed OSPF packet and
cause the device to be reset, which may take several minutes. Note,
though, that the OSPF protocol is not enabled by default.

This vulnerability is documented as Cisco Bug ID CSCec16481.

Solution :
Network Security Threat Level: High

*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive.

Networks Security ID: 10971

Vulnerability Assessment Copyright: This script is (C) 2004 Tenable Network Security and George Theall

Cables, Connectors


No Discussions have been posted on this vulnerability.