Cisco ONS Products Remote DoS

high Nessus Plugin ID 69059

Synopsis

The remote device is affected by a denial of service vulnerability.

Description

The remote Cisco ONS device is affected by a denial of service vulnerability that can be triggered by a specially crafted TCP stream. Successful exploitation will cause a reload of the device's control card.

Solution

Upgrade the device software to the appropriate version per the vendor's advisory.

See Also

https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-20090114-ons.html

Plugin Details

Severity: High

ID: 69059

File Name: cisco_ons_cve_2008_3818.nasl

Version: 1.6

Type: remote

Family: CISCO

Published: 7/25/2013

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 5.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:cisco:ons

Required KB Items: Cisco/ONS/Device, Cisco/ONS/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 1/14/2009

Vulnerability Publication Date: 1/14/2009

Reference Information

CVE: CVE-2008-3818

BID: 33261

CWE: 20