Cisco IOS Software Network Address Translation Vulnerabilities (cisco-sa-20110928-nat)

This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.


Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

The Cisco IOS Software network address translation (NAT) feature
contains multiple denial of service (DoS) vulnerabilities in the
translation of the following protocols :

- NetMeeting Directory (Lightweight Directory Access
Protocol, LDAP)

- Session Initiation Protocol. (Multiple vulnerabilities)

- H.323 protocol

All the vulnerabilities described in this document are caused by
packets in transit on the affected devices when those packets require
application layer translation. Cisco has released free software
updates that address these vulnerabilities.

See also :

http://www.nessus.org/u?88208526

Solution :

Apply the relevant patch referenced in Cisco Security Advisory
cisco-sa-20110928-nat.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: CISCO

Nessus Plugin ID: 56318 ()

Bugtraq ID:

CVE ID: CVE-2011-3276
CVE-2011-3277
CVE-2011-3278
CVE-2011-3279
CVE-2011-3280