Detections
Analytics

Cisco IPS MainApp SNMP DoS (CSCul49309)

medium Nessus Plugin ID 73027

Language:

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

A vulnerability in Cisco IPS Software could allow an unauthenticated, remote attacker to cause the MainApp to hang intermittently due to improper handling of SNMP packets sent to the management interface.

Note that, in order to for the remote host to be affected by this issue, SNMP must be enabled. Also, SNMP v3 users without the 'noAuth' option enabled will need valid credentials to exploit this issue.

Solution

Apply the relevant patch or workaround referenced in Cisco Bug Id CSCul49309.

See Also

http://www.nessus.org/u?710f1590

https://www.zerodaylab.com/vulnerabilities/CVE-2014/CVE-2014-2103.html

Plugin Details

Severity: Medium

ID: 73027

File Name: cisco-sn-CSCul49309-ips.nasl

Version: 1.4

Type: local

Family: CISCO

Published: 3/14/2014

Updated: 11/26/2019

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:C

CVSS Score Source: CVE-2014-2103

Vulnerability Information

CPE: cpe:/h:cisco:intrusion_prevention_system

Required KB Items: Host/Cisco/IPS/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 3/4/2014

Vulnerability Publication Date: 2/27/2014

Reference Information

CVE: CVE-2014-2103

BID: 65864

CISCO-BUG-ID: CSCul49309, CSCum52355