Cisco IOS IKE XAUTH ISAKMP IPSec SA Establish Authentication Bypass (CSCeg00277)

high Nessus Plugin ID 17986

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

The remote version of IOS contains a feature called 'Easy VPN Server' that allows the administrator of the remote router to create a lightweight VPN server.

There is an implementation flaw in the remote version of this software that could allow an authorized user to complete authentication and access the VPN remotely.

Solution

http://www.nessus.org/u?d6d9f923

Plugin Details

Severity: High

ID: 17986

File Name: CSCeg00277.nasl

Version: 1.23

Type: local

Family: CISCO

Published: 4/6/2005

Updated: 6/27/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/o:cisco:ios

Required KB Items: SNMP/community, SNMP/sysDesc, CISCO/model

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 4/6/2005

Reference Information

CVE: CVE-2005-1058

BID: 13033, 13031