Vulnerabilities > CVE-2008-1150 - Resource Management Errors vulnerability in Cisco IOS
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
The virtual private dial-up network (VPDN) component in Cisco IOS before 12.3 allows remote attackers to cause a denial of service (resource exhaustion) via a series of PPTP sessions, related to the persistence of interface descriptor block (IDB) data structures after process termination, aka bug ID CSCdv59309.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
| NASL family | CISCO |
| NASL id | CISCO-SA-20080326-PPTPHTTP.NASL |
| description | Two vulnerabilities exist in the virtual private dial-up network (VPDN) solution when Point-to-Point Tunneling Protocol (PPTP) is used in certain Cisco IOS releases prior to 12.3. PPTP is only one of the supported tunneling protocols used to tunnel PPP frames within the VPDN solution. The first vulnerability is a memory leak that occurs as a result of PPTP session termination. The second vulnerability may consume all interface descriptor blocks on the affected device because those devices will not reuse virtual access interfaces. If these vulnerabilities are repeatedly exploited, the memory and/or interface resources of the attacked device may be depleted. Cisco has made free software available to address these vulnerabilities for affected customers. There are no workarounds available to mitigate the effects of these vulnerabilities. |
| last seen | 2019-10-28 |
| modified | 2010-09-01 |
| plugin id | 49013 |
| published | 2010-09-01 |
| reporter | This script is (C) 2010-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/49013 |
| title | Cisco IOS Virtual Private Dial-up Network Denial of Service Vulnerability - Cisco Systems |
Oval
| accepted | 2008-09-08T04:00:29.437-04:00 | ||||
| class | vulnerability | ||||
| contributors |
| ||||
| description | The virtual private dial-up network (VPDN) component in Cisco IOS before 12.3 allows remote attackers to cause a denial of service (resource exhaustion) via a series of PPTP sessions, related to the persistence of interface descriptor block (IDB) data structures after process termination, aka bug ID CSCdv59309. | ||||
| family | ios | ||||
| id | oval:org.mitre.oval:def:5598 | ||||
| status | accepted | ||||
| submitted | 2008-05-26T11:06:36.000-04:00 | ||||
| title | Cisco IOS Virtual Private Dial-up Network (VPDN) Denial of Service (DoS) Vulnerability | ||||
| version | 3 |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 28460 CVE(CAN) ID: CVE-2008-1151,CVE-2008-1150 Cisco IOS是思科网络设备所使用的互联网操作系统。 如果某些Cisco IOS 12.3之前版本中使用了点到点隧道协议(PPTP)的话,虚拟专用拨号网络(VPDN)中就可能存在两个安全漏洞,远程攻击者可能利用此漏洞获取设备敏感信息或导致设备不可用。 PPTP是VPDN解决方案中用于隧道传输PPP帧的唯一支持隧道协议。在完成PPTP会话时,终止设备上处理器内存会泄露;此外受影响的设备没有删除关联到PPTP会话的虚拟访问接口,之后的连接没有重用接口。这就可能导致耗尽接口描述符块(IDB)限制,在Cisco IOS中无法创建任何新的接口,这就阻断了所有新的VPDN连接,即使路由器仍有足够的处理器内存。必须重启设备才能删除接口。 Cisco IOS 12.2 Cisco IOS 12.1 Cisco IOS 12.0 Cisco已经为此发布了一个安全公告(cisco-sa-20080326-pptp)以及相应补丁: cisco-sa-20080326-pptp:Cisco IOS Virtual Private Dial-up Network Denial of Service Vulnerability 链接:<a href=http://www.cisco.com/warp/public/707/cisco-sa-20080326-pptp.shtml target=_blank>http://www.cisco.com/warp/public/707/cisco-sa-20080326-pptp.shtml</a> |
| id | SSV:3107 |
| last seen | 2017-11-19 |
| modified | 2008-03-31 |
| published | 2008-03-31 |
| reporter | Root |
| title | Cisco IOS虚拟专用拨号网络多个拒绝服务漏洞 |
References
- http://secunia.com/advisories/29507
- http://securitytracker.com/id?1019714
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080969862.shtml
- http://www.securityfocus.com/bid/28460
- http://www.us-cert.gov/cas/techalerts/TA08-087B.html
- http://www.vupen.com/english/advisories/2008/1006/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41484
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5598