IOS Reload after Scanning Vulnerability - Cisco Systems

This script is (C) 2010-2014 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch

Description :

Security Scanning software can cause a memory error in Cisco IOS
Software that will cause a reload to occur. This vulnerability affects
only Cisco IOS software version 12.1(2)T and 12.1(3)T, and limited
deployment releases based on those versions.
Customers using the affected Cisco IOS software releases are urged to
upgrade as soon as possible to later versions that are not vulnerable
to this defect. Vulnerable products and releases are listed in detail
below.
The security scanner makes TCP connection attempts to various ports,
looking for open ports to further investigate known vulnerabilities
with those services associated with certain ports. However, a side
effect of the tests exposes the defect described in this security
advisory, and the router will reload unexpectedly as soon as it
receives a request to review or write the configuration file.
This defect is documented as Cisco Bug ID CSCds07326.

See also :

http://www.nessus.org/u?3794b3d8
http://www.nessus.org/u?8cfed854

Solution :

Apply the relevant patch referenced in Cisco Security Advisory
cisco-sa-20010524-ios-tcp-scanner-reload.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.3
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 48955 (cisco-sa-20010524-ios-tcp-scanner-reloadhttp.nasl)

Bugtraq ID: 2804

CVE ID: CVE-2001-0750