Family: CISCO --> Category: infos
CSCec16481 Vulnerability Scan
Vulnerability Scan Summary
Uses SNMP to determine if a flaw is present
Detailed Explanation for this Vulnerability Test
The target is a Cisco device running a version of IOS that is vulnerable
to a DoS attack from a malformed OSPF packet. Given knowledge of OSPF
area number, netmask, hello, and dead timers that are configured on the
targeted interface, a remote attacker can send a malformed OSPF packet and
cause the device to be reset, which may take several minutes. Note,
though, that the OSPF protocol is not enabled by default.
This vulnerability is documented as Cisco Bug ID CSCec16481.
Solution : http://www.cisco.com/warp/public/707/cisco-sa-20040818-ospf.shtml
Threat Level: High
*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive.
Click HERE for more information and discussions on this network vulnerability scan.