Executive Summary
Summary | |
---|---|
Title | Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities |
Informations | |||
---|---|---|---|
Name | cisco-sa-20090325-mobileip | First vendor Publication | 2009-01-22 |
Vendor | Cisco | Last vendor Modification | 2009-03-25 |
Severity (Vendor) | N/A | Revision | 1.0 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.1 | Attack Range | Network |
Cvss Impact Score | 6.9 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Devices that are running Cisco IOS Software and configured for Mobile IP Network Address Translation (NAT) Traversal feature or Mobile IPv6 are vulnerable to a denial of service (DoS) attack that may result in a blocked interface. Cisco has released free software updates that address these vulnerabilities. |
Original Source
Url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080a9 (...) |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:12043 | |||
Oval ID: | oval:org.mitre.oval:def:12043 | ||
Title: | Cisco IOS Software Mobile IP and Mobile IPv6 | ||
Description: | Multiple unspecified vulnerabilities in the home agent (HA) implementation in the (1) Mobile IP NAT Traversal feature and (2) Mobile IPv6 subsystem in Cisco IOS 12.3 through 12.4 allow remote attackers to cause a denial of service (input queue wedge and interface outage) via an ICMP packet, aka Bug ID CSCso05337. | ||
Family: | ios | Class: | vulnerability |
Reference(s): | CVE-2009-0634 | Version: | 3 |
Platform(s): | Cisco IOS | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12290 | |||
Oval ID: | oval:org.mitre.oval:def:12290 | ||
Title: | Cisco IOS Mobile IP NAT and IPv6 | ||
Description: | Multiple unspecified vulnerabilities in the (1) Mobile IP NAT Traversal feature and (2) Mobile IPv6 subsystem in Cisco IOS 12.3 through 12.4 allow remote attackers to cause a denial of service (input queue wedge and interface outage) via MIPv6 packets, aka Bug ID CSCsm97220. | ||
Family: | ios | Class: | vulnerability |
Reference(s): | CVE-2009-0633 | Version: | 3 |
Platform(s): | Cisco IOS | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-06-05 | Name : Ubuntu USN-743-1 (gs-gpl) File : nvt/ubuntu_743_1.nasl |
2009-06-05 | Name : Ubuntu USN-744-1 (lcms) File : nvt/ubuntu_744_1.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
53129 | Cisco IOS Mobile IP NAT Traversal MIPv6 Packet Handling Remote DoS |
53128 | Cisco IOS Mobile IPv6 Subsystem MIPv6 Packet Handling Remote DoS |
53127 | Cisco IOS Mobile IP NAT Traversal Home Agent (HA) Implementation ICMP Packet ... |
53126 | Cisco IOS Mobile IPv6 Subsystem Home Agent (HA) Implementation ICMP Packet Ha... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20090325-mobileiphttp.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 10:21:55 |
|
2013-05-11 00:42:34 |
|