|
|
Family: CISCO --> Category: infos
CSCds04747 Vulnerability Scan
Vulnerability Scan Summary
Uses SNMP to determine if a flaw is present
Detailed Explanation for this Vulnerability Test
Cisco IOS Software contains a flaw that permits the successful
prediction of TCP Initial Sequence Numbers.
This vulnerability is present in all released versions of Cisco IOS
software running on Cisco routers and switches. It only affects the
security of TCP connections that originate or terminate on the
affected Cisco device itself
it does not apply to TCP traffic
forwarded through the affected device in transit between two other
hosts.
This vulnerability is documented as Cisco bug ID CSCds04747.
Solution :
http://www.cisco.com/warp/public/707/ios-tcp-isn-random-pub.shtml
Threat Level: Medium
*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive
Click HERE for more information and discussions on this network vulnerability scan.
|
