Detections
Analytics

Cisco Aggregation Services Router 900 Route Switch Processor 3 OSPFv2 DoS (cisco-sa-20190327-rsp3-ospf)

high Nessus Plugin ID 134894

Language:

Synopsis

The remote device is missing a vendor-supplied security patch

Description

According to its self-reported version, Cisco IOS XE Software is affected by a vulnerability in the ingress traffic validation for Cisco Aggregation Services Router (ASR) 900 Route Switch Processor 3 (RSP3) due to insufficient validation of ingress traffic on the ASIC used on the RSP3 platform. An unauthenticated, adjacent attacker can exploit this, by sending a malformed OSPF version 2 (OSPFv2) message, in order to trigger a reload and cause a denial of service (DoS) condition on the affected device.

Please see the included Cisco BIDs and Cisco Security Advisory for more information

Solution

Upgrade to the relevant fixed version referenced in Cisco bug ID CSCvh06656

See Also

http://www.nessus.org/u?5f440371

http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-71135

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvh06656

Plugin Details

Severity: High

ID: 134894

File Name: cisco-sa-20190327-rsp3-ospf.nasl

Version: 1.6

Type: local

Family: CISCO

Published: 3/25/2020

Updated: 1/8/2021

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 6.1

Temporal Score: 4.5

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C

CVSS Score Source: CVE-2019-1749

CVSS v3

Risk Factor: High

Base Score: 7.4

Temporal Score: 6.4

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:cisco:ios_xe

Required KB Items: Host/Cisco/IOS-XE/Version, Host/Cisco/IOS-XE/Model, Settings/ParanoidReport

Exploit Ease: No known exploits are available

Patch Publication Date: 3/27/2019

Vulnerability Publication Date: 3/27/2019

Reference Information

CVE: CVE-2019-1749