|
Family: CISCO --> Category: infos
Cisco IOS IPv6 Processing Arbitrary Code Execution Vulnerability Vulnerability Scan
Vulnerability Scan Summary Uses SNMP to determine if a flaw is present
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote router contains a vulnerability which may allow a possible hacker to
execute arbitary code on it.
Description :
The remote version of IOS is vulnerable to a code execution vulnerability when
processing malformed IPv6 packets.
To exploit this flaw, a possible hacker would need to ability to send a malformed
packet from a local segment and may exploit this issue to cause the remote
device to reload repeatedly or to execute arbitrary code in the remote IOS.
See also :
http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml
Solution :
Cisco has made a set of patches available which are listed at the address above.
Threat Level:
High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|