Cisco Catalyst 4000 Series Switch Denial of Service Vulnerability (CSCug41049 / CSCue61890)

This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.


Synopsis :

The remote device is running a vulnerable IOS version.

Description :

The remote Cisco device potentially contains an issue which is
potentially affected by errors related to handling Virtual Switching
Systems (VSS) or Bidirectional Forwarding Detection (BFD) traffic that
could allow denial of service attacks.

See also :

http://www.nessus.org/u?854088ee
http://tools.cisco.com/security/center/viewAlert.x?alertId=33558

Solution :

Upgrade to the relevant fixed version referenced in Cisco bug IDs
CSCug41049 and CSCue61890.

Risk factor :

Medium / CVSS Base Score : 5.7
(CVSS2#AV:A/AC:M/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 5.0
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 73828 ()

Bugtraq ID: 66515

CVE ID: CVE-2014-2131

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial