Cisco Intrusion Prevention System Jumbo Frame Denial of Service (cisco-sa-20080618-ips)

high Nessus Plugin ID 69335

Synopsis

The remote security appliance is missing a vendor-supplied patch.

Description

According to its self-reported version, the version of the Cisco Intrusion Prevention System Software running on the remote host may be vulnerable to a denial of service (DoS) attack caused by a kernel panic.
This is due to the handling of jumbo Ethernet frames when gigabit network interfaces are installed and are deployed in inline mode.

Solution

Apply the relevant update referenced in Cisco Security Advisory cisco-sa-20080618-ips.

See Also

http://www.nessus.org/u?84dc8ff1

Plugin Details

Severity: High

ID: 69335

File Name: cisco-sa-20080618-ips.nasl

Version: 1.10

Type: local

Family: CISCO

Published: 8/14/2013

Updated: 1/26/2022

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:C

Vulnerability Information

CPE: cpe:/a:cisco:intrusion_prevention_system

Required KB Items: Host/Cisco/IPS/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 6/18/2008

Vulnerability Publication Date: 6/18/2008

Reference Information

CVE: CVE-2008-2060

BID: 29791

CWE: 16

CISCO-SA: cisco-sa-20080618-ips

IAVT: 2008-T-0030-S

CISCO-BUG-ID: CSCso64762