Cisco Telnet Denial of Service Vulnerability - Cisco Systems

This script is (C) 2010-2014 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

A specially crafted Transmission Control Protocol (TCP) connection
to a telnet or reverse telnet port of a Cisco device running
Internetwork Operating System (IOS) may block further telnet, reverse
telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases
Hypertext Transport Protocol (HTTP) access to the Cisco device. Data
Link Switching (DLSw) and protocol translation connections may also be
affected.

See also :

http://www.nessus.org/u?5bb6a85b
http://www.nessus.org/u?6f3d9fe1

Solution :

Apply the relevant patch referenced in Cisco Security Advisory
cisco-sa-20040827-telnet.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.0
(CVSS2#E:U/RL:W/RC:C)
Public Exploit Available : false

Family: CISCO

Nessus Plugin ID: 48977 (cisco-sa-20040827-telnethttp.nasl)

Bugtraq ID: 11060

CVE ID: CVE-2004-1464