Cisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability - Cisco Systems

This script is (C) 2010-2015 Tenable Network Security, Inc.

Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

Cisco 10000, uBR10012 and uBR7200 series devices use a User Datagram
Protocol (UDP) based Inter-Process Communication (IPC) channel that is
externally reachable. An attacker could exploit this vulnerability to
cause a denial of service (DoS) condition on affected devices. No other
platforms are affected.

Cisco has released free software updates that address this
vulnerability. Workarounds that mitigate this vulnerability are

See also :

Solution :

Apply the relevant patch referenced in Cisco Security Advisory

Risk factor :

High / CVSS Base Score : 8.5
CVSS Temporal Score : 7.0
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 49020 (cisco-sa-20080924-ipchttp.nasl)

Bugtraq ID: 31363

CVE ID: CVE-2008-3805

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial