SISCO OSI Stack Vulnerability Scan Remote DoS

This script is Copyright (C) 2006-2012 Tenable Network Security, Inc.


Synopsis :

The host is running a version of the SISCO OSI stack that can be
crashed by a malformed packet.

Description :

SISCO's ICCP stack is used in many third-party ICCP servers including
those sold by Siemens and Areva. The SISCO stack found in the host
system does not properly handle malformed packets. A remote,
unauthenticated attacker may be able to crash the ICCP server on the
host.

See also :

http://www.sisconet.com/downloads/NESSUS_Vulnerability_Announcement.pdf

Solution :

Upgrade to the current version of SISCO stack version 4.x. Check with
your SCADA/EMS vendor for additional information.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 6.4
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: SCADA

Nessus Plugin ID: 23814 ()

Bugtraq ID: 20130

CVE ID: CVE-2005-4812