Cisco IOS CDP Neighbor Announcement DoS

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

There is a vulnerability in how Cisco routers handle CDP. By sending
a large amount of CDP neighbor announcements it is possible to consume
all of the router's available memory.

Note that a device would need to be configured to use CDP and an
attacker would need to be on the same segment as the target router in
order to exploit this vulnerability.

See also :

http://www.nessus.org/u?dddb2797
http://seclists.org/bugtraq/2001/Oct/62

Solution :

Apply the relevant patch references in the Cisco Security Advisory.

Risk factor :

Low / CVSS Base Score : 3.3
(CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 2.9
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 17793 ()

Bugtraq ID: 3412

CVE ID: CVE-2001-1071

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now