Cisco IOS Software Multicast Source Discovery Protocol DoS (cisco-sa-20120328-msdp)
High Nessus Plugin ID 58568
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Cisco IOS device is affected by a denial of service vulnerability in the Multicast Source Discovery Protocol (MSDP) implementation. An unauthenticated, remote attacker can exploit this, via an MSDP packet containing encapsulated IGMP data, to cause the device to reload.
SolutionUpgrade to the relevant fixed version referenced in Cisco Security Advisory cisco-sa-20120328-msdp. Alternatively, apply the workarounds detailed in the vendor advisory.