Cisco IPS MainApp SNMP DoS (CSCul49309)

This script is Copyright (C) 2014 Tenable Network Security, Inc.

Synopsis :

The remote device is missing a vendor-supplied security patch.

Description :

A vulnerability in Cisco IPS Software could allow an unauthenticated,
remote attacker to cause the MainApp to hang intermittently due to
improper handling of SNMP packets sent to the management interface.

Note that, in order to for the remote host to be affected by this issue,
SNMP must be enabled. Also, SNMP v3 users without the 'noAuth' option
enabled will need valid credentials to exploit this issue.

See also :

Solution :

Apply the relevant patch or workaround referenced in Cisco Bug Id

Risk factor :

High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.8
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 73027 ()

Bugtraq ID: 65864

CVE ID: CVE-2014-2103

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now