Synopsis
The remote device is missing a vendor-supplied security patch.
Description
The IOS Firewall Feature set, also known as Cisco Secure Integrated Software, also known as Context Based Access Control (CBAC), and introduced in IOS version 11.2P, has a vulnerability that permits traffic normally expected to be denied by the dynamic access control lists.
An attacker may use this flaw to break into your network even though it was explicitly denied.
This vulnerability is documented as Cisco Bug ID CSCdv48261.
Solution
http://www.nessus.org/u?3fbe8d75
Reference : http://online.securityfocus.com/archive/1/242844
Plugin Details
File Name: CSCdv48261.nasl
Supported Sensors: Nessus
Risk Information
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/o:cisco:ios
Required KB Items: SNMP/community, SNMP/sysDesc, CISCO/model
Vulnerability Publication Date: 11/28/2001