SISCO OSI Stack Malformed Packet Remote DoS

Medium Nessus Plugin ID 24725


The remote host is prone to a denial of service attack.


The SISCO stack on the remote host system does not properly handle malformed packets. An unauthenticated remote attacker may be able to crash the ICCP stack on the affected host by sending a series of malformed packets.


Upgrade to the current version of SISCO stack version 4.x or 5.x. Check with SCADA/EMS vendor for additional information.

Plugin Details

Severity: Medium

ID: 24725

File Name: scada_iccp_sisco_osi_dos.nbin

Version: $Revision: 1.25 $

Type: local

Family: SCADA

Published: 2007/02/27

Modified: 2018/01/29

Dependencies: 23815, 23811

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: SCADA/ICCP/SISCO/Version

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2007/01/17

Reference Information

CVE: CVE-2006-6489

BID: 22095

OSVDB: 32924

CERT: 145825