Cisco IOS Interface Blocked by IPv4 Packets - Cisco Systems

This script is (C) 2010-2014 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

Cisco routers and switches running Cisco IOS software and configured
to process Internet Protocol version 4 (IPv4) packets are vulnerable to
a Denial of Service (DoS) attack. Multiple IPv4 packets with specific
protocol fields sent directly to the device may cause the input
interface to stop processing traffic once the input queue is full.
Traffic passing through the device cannot block the input queue. No
authentication is required to process the inbound packet. Processing of
IPv4 packets is enabled by default. Devices running only IP version 6
(IPv6) are not affected. Multiple valid workarounds are available in
the form of best practices for situations where software upgrades are
not currently feasible.
Cisco has made software available, free of charge, to correct the
problem.

See also :

http://www.nessus.org/u?5262d246
http://www.nessus.org/u?2c940981

Solution :

Apply the relevant patch referenced in Cisco Security Advisory
cisco-sa-20030717-blocked.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: CISCO

Nessus Plugin ID: 48971 (cisco-sa-20030717-blocked.nasl)

Bugtraq ID: 8211

CVE ID: CVE-2003-0567