Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> CISCO >> Cisco IOS TCP Listener Denial Of Service Vulnerability

Vulnerability Assessment Details

Cisco IOS TCP Listener Denial Of Service Vulnerability
Vulnerability Assessment Summary
Uses SNMP to determine if a flaw is present

Detailed Explanation for this Vulnerability Assessment

Summary :

It is possible to crash the remote device remotely.

Description :


The remote CISCO switch runs a version of IOS contains a flaw which may
cause the remote router to crash when processing specially malformed TCP
ackets.

A possible hacker might use these flaws to crash this router remotely.

Solution :

http://www.nessus.org/u?1885e120

Network Security Threat Level:

Low / CVSS Base Score : 3.3
(AV:R/AC:L/Au:NR/C:N/I:N/A:C/B:A)

Networks Security ID: 22208

Vulnerability Assessment Copyright: This script is (C) 2007 Tenable Network Security
Cables, Connectors

LSI Logic Dual 128Mb PCI-X SCSI 320 Raid Memory Battery Module 69000902SMD
$49.99		 LSI Logic Dual 128Mb PCI-X SCSI 320 Raid Memory Battery Module 69000902SMD pictureDell Perc H310 Mini Mono 6Gb/s SAS/SATA RAID Controller Module (0K09CJ)
$53.4		 Dell Perc H310 Mini Mono 6Gb/s SAS/SATA RAID Controller Module (0K09CJ) pictureHP Smart Array P410 (013233-001) SAS/SATA RAID Card PCI-e 512MB Cache + Battery
$31.36		 HP Smart Array P410 (013233-001) SAS/SATA RAID Card PCI-e 512MB Cache + Battery pictureDell PERC/6i SAS/SATA RAID Card (0DX481) PCI-express x8 With Battery No Bracket
$24.02		 Dell PERC/6i SAS/SATA RAID Card (0DX481) PCI-express x8 With Battery No Bracket picture


Discussions

No Discussions have been posted on this vulnerability.