RIP Poisoning Routing Table Modification (Adjacent Network)

This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.


Synopsis :

Routing tables can be modified.

Description :

It was possible to poison the remote host routing tables through the
RIP protocol.

An attacker may use this to hijack network connections.

Several RIP agents reject routes that are not sent by a neighbor, so
this flaw may not be exploitable from a non-adjacent network.

Solution :

Either disable the RIP listener if it is not used, use RIP-2 in
conjunction with authentication, or use another routing protocol.

Risk factor :

Medium / CVSS Base Score : 5.8
(CVSS2#AV:A/AC:L/Au:N/C:P/I:P/A:P)

Family: Misc.

Nessus Plugin ID: 39587 ()

Bugtraq ID:

CVE ID: