Cisco IOS CDP Neighbor Announcement DoS

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.

Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

There is a vulnerability in how Cisco routers handle CDP. By sending
a large amount of CDP neighbor announcements it is possible to consume
all of the router's available memory.

Note that a device would need to be configured to use CDP and an
attacker would need to be on the same segment as the target router in
order to exploit this vulnerability.

See also :

Solution :

Apply the relevant patch references in the Cisco Security Advisory.

Risk factor :

Low / CVSS Base Score : 3.3
CVSS Temporal Score : 2.9
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 17793 ()

Bugtraq ID: 3412

CVE ID: CVE-2001-1071

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial