Source Routed Packet Weakness

This script is Copyright (C) 2003-2011 Tenable Network Security, Inc.


Synopsis :

The remote host accepts loose source routed IP packets.

Description :

The remote host accepts loose source routed IP packets.
The feature was designed for testing purpose.

An attacker may use it to circumvent poorly designed IP filtering
and exploit another flaw. However, it is not dangerous by itself.

See also :

http://www.faqs.org/faqs/cisco-networking-faq/section-23.html

Solution :

Drop source routed packets on this host or on other ingress
routers or firewalls.

Risk factor :

None

Family: Firewalls

Nessus Plugin ID: 11834 ()

Bugtraq ID:

CVE ID: