Synopsis
The remote device is missing a vendor-supplied security patch.
Description
When an 802.1x (IEEE standard for port based network access control) frame is received by an affected Catalyst 5000 series switch on a STP (Spanning Tree Protocol) blocked port it is forwarded in that VLAN (Virtual Local Area Network) instead of being dropped. This causes a performance impacting 802.1x frames network storm in that part of the network, which is made up of the affected Catalyst 5000 series switches. This network storm only subsides when the source of the 802.1x frames is removed or one of the workarounds in the workaround section is applied.
This vulnerability is documented as Cisco bug ID CSCdt62732.
Solution
http://www.nessus.org/u?e0c2952e
Plugin Details
File Name: CSCdt62732.nasl
Supported Sensors: Nessus
Risk Information
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
Vulnerability Information
CPE: cpe:/o:cisco:ios
Required KB Items: SNMP/community, SNMP/sysDesc, CISCO/model
Exploit Ease: No known exploits are available
Vulnerability Publication Date: 4/16/2001