Cisco IOS XE Software TFTP DoS

This script is Copyright (C) 2014 Tenable Network Security, Inc.

Synopsis :

The remote device is affected by a denial of service vulnerability.

Description :

A vulnerability in the flow manager code in Cisco IOS XE could allow a
remote, unauthenticated attacker to trigger a denial of service
condition resulting in a crash of the device by sending specially
generated TFTP UDP traffic.

It should be noted that this plugin merely checks for an affected IOS XE
version and does not attempt to perform any additional validity checks.

See also :

Solution :

Apply the relevant patch referenced in the Cisco Security Notice.

Risk factor :

High / CVSS Base Score : 7.1
CVSS Temporal Score : 6.2
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 71924 ()

Bugtraq ID: 64062

CVE ID: CVE-2013-6704

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now