SISCO OSI Stack Malformed Packet Remote DoS

This script is Copyright (C) 2007-2012 Digital Bond


Synopsis :

The remote host is prone to a denial of service attack.

Description :

The SISCO stack on the remote host system does not properly handle
malformed packets. An unauthenticated remote attacker may be able to
crash the ICCP stack on the affected host by sending a series of
malformed packets.

Solution :

Upgrade to the current version of SISCO stack version 4.x or 5.x.
Check with SCADA/EMS vendor for additional information.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.1
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: SCADA

Nessus Plugin ID: 24725 ()

Bugtraq ID: 22095

CVE ID: CVE-2006-6489