Cisco IOS Portscan Remote Denial of Service

medium Nessus Plugin ID 17774

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

It is possible to cause a denial of service by scanning all ports on the host or scanning a network of hosts for a single open port through the device.

Solution

Upgrade to IOS 12.1(6a), as it is reportedly unaffected by the vulnerability.

See Also

https://seclists.org/bugtraq/2002/Jun/33

Plugin Details

Severity: Medium

ID: 17774

File Name: cisco-20020606-portscan-dos.nasl

Version: 1.7

Type: local

Family: CISCO

Published: 1/10/2012

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/o:cisco:ios

Required KB Items: Host/Cisco/IOS/Version, Settings/PCI_DSS

Exploit Ease: No known exploits are available

Patch Publication Date: 6/6/2002

Vulnerability Publication Date: 6/5/2002

Reference Information

CVE: CVE-2002-2052

BID: 4947