Cisco Regular Expression Processing DoS

medium Nessus Plugin ID 17790

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

On September 19, 2007, Cisco released a security response for a denial of service vulnerability in the regular expression processing in IOS. Exploitation of this vulnerability could result in a denial of service crash and reload. This plugin checks if the appropriate fix for the advisory has been installed.

Solution

Apply the relevant patch referenced in the Cisco Security Advisory cisco-sr-20070912-regexp.

See Also

http://www.nessus.org/u?c48e7e3f

https://puck.nether.net/pipermail/cisco-nsp/2007-August/043010.html

Plugin Details

Severity: Medium

ID: 17790

File Name: cisco-sr-20070912-regexp.nasl

Version: 1.11

Type: combined

Family: CISCO

Published: 1/10/2012

Updated: 7/6/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/o:cisco:ios

Required KB Items: Host/Cisco/IOS/Version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 12/19/2002

Vulnerability Publication Date: 8/17/2007

Reference Information

CVE: CVE-2007-4430

BID: 25352

CWE: 20

CISCO-SR: cisco-sr-20070912-regexp

CISCO-BUG-ID: CSCsk14633, CSCsk33054