|
|
Family: CISCO --> Category: infos
CSCdt62732 Vulnerability Scan
Vulnerability Scan Summary
Uses SNMP to determine if a flaw is present
Detailed Explanation for this Vulnerability Test
When an 802.1x (IEEE standard for port based network access control)
frame is received by an affected Catalyst 5000 series switch on a STP
(Spanning Tree Protocol) blocked port it is forwarded in that VLAN
(Virtual Local Area Network) instead of being dropped. This causes a
performance impacting 802.1x frames network storm in that part of the
network, which is made up of the affected Catalyst 5000 series
switches. This network storm only subsides when the source of the
802.1x frames is removed or one of the workarounds in the workaround
section is applied.
This vulnerability is documented as Cisco bug ID CSCdt62732.
Solution :
http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml
Threat Level: High
*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive
Click HERE for more information and discussions on this network vulnerability scan.
|
