|
Family: CISCO --> Category: infos
CSCdt46181 Vulnerability Scan
Vulnerability Scan Summary Uses SNMP to determine if a flaw is present
Detailed Explanation for this Vulnerability Test
Point-to-Point Tunneling Protocol (PPTP) allows users to tunnel to an
Internet Protocol (IP) network using a Point-to-Point Protocol (PPP).
The protocol is described in RFC2637.
PPTP implementation using Cisco IOSŪ software releases contains a
vulnerability that will crash a router if it receives a malformed or
crafted PPTP packet. To expose this vulnerability, PPTP must be
enabled on the router. PPTP is disabled by default. No additional
special conditions are required.
A possible hacker may use this issue to prevent your network
from working properly
This vulnerability is documented as Cisco Bug ID CSCdt46181
Solution :
http://www.cisco.com/warp/public/707/PPTP-vulnerability-pub.html
Threat Level: High
*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive
Click HERE for more information and discussions on this network vulnerability scan.
|