SISCO OSI Stack Malformed Packet Remote DoS

medium Nessus Plugin ID 24725

Synopsis

The remote host is prone to a denial of service attack.

Description

The SISCO stack on the remote host system does not properly handle malformed packets. An unauthenticated remote attacker may be able to crash the ICCP stack on the affected host by sending a series of malformed packets.

Solution

Upgrade to the current version of SISCO stack version 4.x or 5.x. Check with SCADA/EMS vendor for additional information.

Plugin Details

Severity: Medium

ID: 24725

File Name: scada_iccp_sisco_osi_dos.nbin

Version: 1.72

Type: local

Family: SCADA

Published: 2/27/2007

Updated: 5/20/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Required KB Items: SCADA/ICCP/SISCO/Version

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 1/17/2007

Reference Information

CVE: CVE-2006-6489

BID: 22095

CERT: 145825