Cisco IOS Software Processing of SAA Packets - Cisco Systems (Deprecated)

This script is (C) 2010-2014 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch

Description :

The Service Assurance Agent (SAA) is the new name for the Response Time
Reporter (RTR) feature.
The router is vulnerable only if the RTR responder is enabled. When the
router receives a malformed RTR packet, it will crash. RTR is disabled
by default. Although RTR was introduced in Cisco IOS Software Release
11.2, only the following main releases are vulnerable:
For the complete list please see the Software Versions and Fixes
section.
No other Cisco product is vulnerable.
There is no workaround short of disabling the RTR responder. It is
possible to mitigate the vulnerability by applying the access control
list (ACL) on the router.

See also :

http://www.nessus.org/u?7e84eef2
http://www.cisco.com/en/US/products/csa/cisco-sa-20030515-saa.html

Solution :

Apply the described patch (see plugin output).

Risk factor :

High

Family: CISCO

Nessus Plugin ID: 48970 (cisco-sa-20030515-saa.nasl)

Bugtraq ID:

CVE ID: