RIP Poisoning Routing Table Modification

This script is Copyright (C) 2003-2013 Tenable Network Security, Inc.


Synopsis :

Routing tables can be modified.

Description :

The remote RIP listener accepts routes that are not sent by a
neighbor.

This cannot happen in the RIP protocol as defined by RFC2453, and
although the RFC is silent on this point, such routes should probably
be ignored.

A remote attacker might use this flaw to access the local network if
it is not protected by a properly configured firewall, or to hijack
connections.

Solution :

Either disable the RIP listener if it is not used, use RIP-2 in
conjunction with authentication, or use another routing protocol.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Misc.

Nessus Plugin ID: 11829 ()

Bugtraq ID:

CVE ID: