This script is (C) 2010-2014 Tenable Network Security, Inc.
The remote device is missing a vendor-supplied security patch
A Cisco device running IOS Border Gateway Protocol (BGP) is vulnerable
to a Denial of Service (DoS) attack from a malformed BGP packet. Only
devices with either the command bgp log-neighbor-changes configured or
the command snmp-server enable traps bgp are vulnerable. The BGP
protocol is not enabled by default, and must be configured in order to
accept traffic from an explicitly defined peer. Unless the malicious
traffic appears to be sourced from a configured, trusted peer, it would
be difficult to inject a malformed packet.
Cisco has made free software available to address this problem.
See also :
Apply the relevant patch referenced in Cisco Security Advisory
Risk factor :
High / CVSS Base Score : 7.1
CVSS Temporal Score : 5.7
Public Exploit Available : false
Nessus Plugin ID: 48980 (cisco-sa-20050126-bgphttp.nasl)
Bugtraq ID: 12370
CVE ID: CVE-2005-0196
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.