Cisco IOS Software Multiple Features Crafted UDP Packet Vulnerability - Cisco Systems

This script is (C) 2010-2014 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

Several features within Cisco IOS Software are affected by a crafted
UDP packet vulnerability. If any of the affected features are enabled,
a successful attack will result in a blocked input queue on the inbound
interface. Only crafted UDP packets destined for the device could
result in the interface being blocked. Transit traffic will not block
the interface.
Cisco has released free software updates that address this
vulnerability and workarounds that mitigate this vulnerability are
available.

See also :

http://www.nessus.org/u?ff7052b3
http://www.nessus.org/u?70570445

Solution :

Apply the relevant patch referenced in Cisco Security Advisory
cisco-sa-20090325-udp.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 6.4
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 49035 (cisco-sa-20090325-udphttp.nasl)

Bugtraq ID: 34245

CVE ID: CVE-2009-0631