Vulnerabilities > CVE-2009-0629 - Unspecified vulnerability in Cisco IOS

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

high complexity

cisco

nessus

NVD

Published: 2009-03-27

Updated: 2021-08-25

Summary

The (1) Airline Product Set (aka ALPS), (2) Serial Tunnel Code (aka STUN), (3) Block Serial Tunnel Code (aka BSTUN), (4) Native Client Interface Architecture (NCIA) support, (5) Data-link switching (aka DLSw), (6) Remote Source-Route Bridging (RSRB), (7) Point to Point Tunneling Protocol (PPTP), (8) X.25 for Record Boundary Preservation (RBP), (9) X.25 over TCP (XOT), and (10) X.25 Routing features in Cisco IOS 12.2 and 12.4 allows remote attackers to cause a denial of service (device reload) via a series of crafted TCP packets.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS 12.2 Cisco IOS 12.2B Cisco IOS 12.2Bc Cisco IOS 12.2Bw Cisco IOS 12.2Bx Cisco IOS 12.2By Cisco IOS 12.2Bz Cisco IOS 12.2Ca Cisco IOS 12.2Cx Cisco IOS 12.2Cy Cisco IOS 12.2Cz Cisco IOS 12.2Da Cisco IOS 12.2Dd Cisco IOS 12.2Dx Cisco IOS 12.2Ew Cisco IOS 12.2Ewa Cisco IOS 12.2Ex Cisco IOS 12.2Ey Cisco IOS 12.2Ez Cisco IOS 12.2Fx Cisco IOS 12.2Fy Cisco IOS 12.2Fz Cisco IOS 12.2Irb Cisco IOS 12.2Ixa Cisco IOS 12.2Ixb Cisco IOS 12.2Ixc Cisco IOS 12.2Ixd Cisco IOS 12.2Ixe Cisco IOS 12.2Ixf Cisco IOS 12.2Ixg Cisco IOS 12.2Ja Cisco IOS 12.2Jk Cisco IOS 12.2L Cisco IOS 12.2Mb Cisco IOS 12.2Mc Cisco IOS 12.2Rc Cisco IOS 12.2S Cisco IOS 12.2Sb Cisco IOS 12.2Sbc Cisco IOS 12.2Sca Cisco IOS 12.2Sga Cisco IOS 12.2Sm Cisco IOS 12.2So Cisco IOS 12.2Sr Cisco IOS 12.2Sra Cisco IOS 12.2Srb Cisco IOS 12.2Src Cisco IOS 12.2Su Cisco IOS 12.2Sv Cisco IOS 12.2Sva Cisco IOS 12.2Svc Cisco IOS 12.2Svd Cisco IOS 12.2Sve Cisco IOS 12.2Sw Cisco IOS 12.2Sx Cisco IOS 12.2Sxa Cisco IOS 12.2Sxb Cisco IOS 12.2Sxd Cisco IOS 12.2Sxe Cisco IOS 12.2Sxf Cisco IOS 12.2Sy Cisco IOS 12.2Sz Cisco IOS 12.2T Cisco IOS 12.2Tpc Cisco IOS 12.2Xa Cisco IOS 12.2Xb Cisco IOS 12.2Xc Cisco IOS 12.2Xd Cisco IOS 12.2Xe Cisco IOS 12.2Xf Cisco IOS 12.2Xg Cisco IOS 12.2Xh Cisco IOS 12.2Xi Cisco IOS 12.2Xj Cisco IOS 12.2Xk Cisco IOS 12.2Xl Cisco IOS 12.2Xm Cisco IOS 12.2Xn Cisco IOS 12.2Xo Cisco IOS 12.2Xq Cisco IOS 12.2Xr Cisco IOS 12.2Xs Cisco IOS 12.2Xt Cisco IOS 12.2Xu Cisco IOS 12.2Xv Cisco IOS 12.2Xw Cisco IOS 12.2Ya Cisco IOS 12.2Yb Cisco IOS 12.2Yc Cisco IOS 12.2Yd Cisco IOS 12.2Ye Cisco IOS 12.2Yf Cisco IOS 12.2Yg Cisco IOS 12.2Yh Cisco IOS 12.2Yj Cisco IOS 12.2Yk Cisco IOS 12.2Yl Cisco IOS 12.2Ym Cisco IOS 12.2Yn Cisco IOS 12.2Yo Cisco IOS 12.2Yp Cisco IOS 12.2Yq Cisco IOS 12.2Yr Cisco IOS 12.2Ys Cisco IOS 12.2Yt Cisco IOS 12.2Yu Cisco IOS 12.2Yv Cisco IOS 12.2Yw Cisco IOS 12.2Yx Cisco IOS 12.2Yy Cisco IOS 12.2Yz Cisco IOS 12.2Za Cisco IOS 12.2Zb Cisco IOS 12.2Zc Cisco IOS 12.2Zd Cisco IOS 12.2Ze Cisco IOS 12.2Zf Cisco IOS 12.2Zg Cisco IOS 12.2Zh Cisco IOS 12.2Zj Cisco IOS 12.2Zl Cisco IOS 12.2Zp Cisco IOS 12.2Zu Cisco IOS 12.2Zx Cisco IOS 12.2Zy Cisco IOS 12.2Zya Cisco IOS 12.4 Cisco IOS 12.4\(1\) Cisco IOS 12.4\(1B\) Cisco IOS 12.4\(1C\) Cisco IOS 12.4\(2\)Mr Cisco IOS 12.4\(2\)Mr1 Cisco IOS 12.4\(2\)T Cisco IOS 12.4\(2\)T1 Cisco IOS 12.4\(2\)T2 Cisco IOS 12.4\(2\)T3 Cisco IOS 12.4\(2\)T4 Cisco IOS 12.4\(2\)Xa Cisco IOS 12.4\(2\)Xb Cisco IOS 12.4\(2\)Xb2 Cisco IOS 12.4\(3\) Cisco IOS 12.4\(3\)T2 Cisco IOS 12.4\(3A\) Cisco IOS 12.4\(3B\) Cisco IOS 12.4\(3D\) Cisco IOS 12.4\(4\)Mr Cisco IOS 12.4\(4\)T Cisco IOS 12.4\(4\)T2 Cisco IOS 12.4\(5\) Cisco IOS 12.4\(5B\) Cisco IOS 12.4\(6\)T Cisco IOS 12.4\(6\)T1 Cisco IOS 12.4\(7\) Cisco IOS 12.4\(7A\) Cisco IOS 12.4\(8\) Cisco IOS 12.4\(9\)T Cisco IOS 12.4\(23\) Cisco IOS 12.4Ja Cisco IOS 12.4Jda Cisco IOS 12.4Jk Cisco IOS 12.4Jl Cisco IOS 12.4Jma Cisco IOS 12.4Jmb Cisco IOS 12.4Jx Cisco IOS 12.4Md Cisco IOS 12.4Mr Cisco IOS 12.4S Cisco IOS 12.4Sw Cisco IOS 12.4T Cisco IOS 12.4Xa Cisco IOS 12.4Xb Cisco IOS 12.4Xc Cisco IOS 12.4Xd Cisco IOS 12.4Xe Cisco IOS 12.4Xf Cisco IOS 12.4Xg Cisco IOS 12.4Xj Cisco IOS 12.4Xk Cisco IOS 12.4Xl Cisco IOS 12.4Xm Cisco IOS 12.4Xn Cisco IOS 12.4Xp Cisco IOS 12.4Xt Cisco IOS 12.4Xv Cisco IOS 12.4Xw Cisco IOS 12.4Xy Cisco IOS XR 12.4	187

Nessus

NASL family	CISCO
NASL id	CISCO-SA-20090325-TCPHTTP.NASL
description	Cisco IOS Software contains a vulnerability in multiple features that could allow an attacker to cause a denial of service (DoS) condition on the affected device. A sequence of specially crafted TCP packets can cause the vulnerable device to reload. Cisco has released free software updates that address this vulnerability. Several mitigation strategies are outlined in the workarounds section of this advisory.
last seen	2020-03-17
modified	2010-09-01
plugin id	49034
published	2010-09-01
reporter	This script is (C) 2010-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/49034
title	Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability - Cisco Systems
code	#TRUSTED 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 # # (C) Tenable Network Security, Inc. # # Security advisory is (C) CISCO, Inc. # See https://www.cisco.com/en/US/products/products_security_advisory09186a0080a964bc.shtml if (NASL_LEVEL < 3000) exit(0); include("compat.inc"); if (description) { script_id(49034); script_version("1.21"); script_set_attribute(attribute:"plugin_modification_date", value:"2018/11/15"); script_cve_id("CVE-2009-0629"); script_bugtraq_id(34238); script_xref(name:"CISCO-BUG-ID", value:"CSCsr29468"); script_xref(name:"CISCO-SA", value:"cisco-sa-20090325-tcp"); script_name(english:"Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability - Cisco Systems"); script_summary(english:"Checks the IOS version."); script_set_attribute(attribute:"synopsis", value:"The remote device is missing a vendor-supplied security patch."); script_set_attribute(attribute:"description", value: 'Cisco IOS Software contains a vulnerability in multiple features that could allow an attacker to cause a denial of service (DoS) condition on the affected device. A sequence of specially crafted TCP packets can cause the vulnerable device to reload. Cisco has released free software updates that address this vulnerability. Several mitigation strategies are outlined in the workarounds section of this advisory. '); script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?eaad7e63"); # https://www.cisco.com/en/US/products/products_security_advisory09186a0080a964bc.shtml script_set_attribute(attribute:"see_also", value: "http://www.nessus.org/u?b8d7201c"); script_set_attribute(attribute:"solution", value: "Apply the relevant patch referenced in Cisco Security Advisory cisco-sa-20090325-tcp."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"combined"); script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:ios"); script_set_attribute(attribute:"vuln_publication_date", value:"2009/03/25"); script_set_attribute(attribute:"patch_publication_date", value:"2009/03/25"); script_set_attribute(attribute:"plugin_publication_date", value:"2010/09/01"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is (C) 2010-2018 Tenable Network Security, Inc."); script_family(english:"CISCO"); script_dependencie("cisco_ios_version.nasl"); script_require_keys("Host/Cisco/IOS/Version"); exit(0); } include("audit.inc"); include("cisco_func.inc"); include("cisco_kb_cmd_func.inc"); flag = 0; override = 0; version = get_kb_item_or_exit("Host/Cisco/IOS/Version"); if (version == '12.4(20)YA1') flag++; else if (version == '12.4(20)YA') flag++; else if (version == '12.4(15)XZ1') flag++; else if (version == '12.4(15)XZ') flag++; else if (version == '12.4(15)XY3') flag++; else if (version == '12.4(15)XY2') flag++; else if (version == '12.4(15)XY1') flag++; else if (version == '12.4(15)XY') flag++; else if (version == '12.4(15)XR3') flag++; else if (version == '12.4(15)XR2') flag++; else if (version == '12.4(15)XR1') flag++; else if (version == '12.4(15)XR') flag++; else if (version == '12.4(15)XQ1') flag++; else if (version == '12.4(15)XQ') flag++; else if (version == '12.4(20)T1') flag++; else if (version == '12.4(20)T') flag++; else if (version == '12.4(19)MR') flag++; else if (version == '12.4(15)MD1') flag++; else if (version == '12.4(15)MD') flag++; else if (version == '12.2(18)ZYA') flag++; else if (version == '12.2(18)ZY2') flag++; else if (version == '12.2(18)ZY1') flag++; else if (version == '12.2(18)ZY') flag++; else if (version == '12.2(28)ZX') flag++; else if (version == '12.2(18)ZU2') flag++; else if (version == '12.2(18)ZU1') flag++; else if (version == '12.2(18)ZU') flag++; else if (version == '12.2(40)XO') flag++; else if (version == '12.2(33)XN1') flag++; else if (version == '12.2(14)SZ6') flag++; else if (version == '12.2(14)SZ5') flag++; else if (version == '12.2(14)SZ4') flag++; else if (version == '12.2(14)SZ3') flag++; else if (version == '12.2(14)SZ2') flag++; else if (version == '12.2(14)SZ1') flag++; else if (version == '12.2(14)SZ') flag++; else if (version == '12.2(33)SXI') flag++; else if (version == '12.2(33)SXH4') flag++; else if (version == '12.2(33)SXH3a') flag++; else if (version == '12.2(33)SXH3') flag++; else if (version == '12.2(33)SXH2a') flag++; else if (version == '12.2(33)SXH2') flag++; else if (version == '12.2(33)SXH1') flag++; else if (version == '12.2(33)SXH') flag++; else if (version == '12.2(18)SXF9') flag++; else if (version == '12.2(18)SXF8') flag++; else if (version == '12.2(18)SXF7') flag++; else if (version == '12.2(18)SXF6') flag++; else if (version == '12.2(18)SXF5') flag++; else if (version == '12.2(18)SXF4') flag++; else if (version == '12.2(18)SXF3') flag++; else if (version == '12.2(18)SXF2') flag++; else if (version == '12.2(18)SXF15a') flag++; else if (version == '12.2(18)SXF15') flag++; else if (version == '12.2(18)SXF14') flag++; else if (version == '12.2(18)SXF13') flag++; else if (version == '12.2(18)SXF12a') flag++; else if (version == '12.2(18)SXF12') flag++; else if (version == '12.2(18)SXF11') flag++; else if (version == '12.2(18)SXF10a') flag++; else if (version == '12.2(18)SXF10') flag++; else if (version == '12.2(18)SXF1') flag++; else if (version == '12.2(18)SXF') flag++; else if (version == '12.2(18)SXE6b') flag++; else if (version == '12.2(18)SXE6a') flag++; else if (version == '12.2(18)SXE6') flag++; else if (version == '12.2(18)SXE5') flag++; else if (version == '12.2(18)SXE4') flag++; else if (version == '12.2(18)SXE3') flag++; else if (version == '12.2(18)SXE2') flag++; else if (version == '12.2(18)SXE1') flag++; else if (version == '12.2(18)SXE') flag++; else if (version == '12.2(18)SXD7b') flag++; else if (version == '12.2(18)SXD7a') flag++; else if (version == '12.2(18)SXD7') flag++; else if (version == '12.2(18)SXD6') flag++; else if (version == '12.2(18)SXD5') flag++; else if (version == '12.2(18)SXD4') flag++; else if (version == '12.2(18)SXD3') flag++; else if (version == '12.2(18)SXD2') flag++; else if (version == '12.2(18)SXD1') flag++; else if (version == '12.2(18)SXD') flag++; else if (version == '12.2(25)SW9') flag++; else if (version == '12.2(25)SW8') flag++; else if (version == '12.2(25)SW7') flag++; else if (version == '12.2(25)SW6') flag++; else if (version == '12.2(25)SW5') flag++; else if (version == '12.2(25)SW4a') flag++; else if (version == '12.2(25)SW4') flag++; else if (version == '12.2(25)SW3a') flag++; else if (version == '12.2(25)SW3') flag++; else if (version == '12.2(25)SW2') flag++; else if (version == '12.2(25)SW12') flag++; else if (version == '12.2(25)SW11') flag++; else if (version == '12.2(25)SW10') flag++; else if (version == '12.2(25)SW1') flag++; else if (version == '12.2(23)SW1') flag++; else if (version == '12.2(23)SW') flag++; else if (version == '12.2(21)SW1') flag++; else if (version == '12.2(21)SW') flag++; else if (version == '12.2(20)SW') flag++; else if (version == '12.2(19)SW') flag++; else if (version == '12.2(18)SW') flag++; else if (version == '12.2(29)SVE0') flag++; else if (version == '12.2(29)SVD1') flag++; else if (version == '12.2(29)SVD0') flag++; else if (version == '12.2(29)SVD') flag++; else if (version == '12.2(29)SVC') flag++; else if (version == '12.2(29)SVA2') flag++; else if (version == '12.2(29b)SV1') flag++; else if (version == '12.2(29b)SV') flag++; else if (version == '12.2(29a)SV1') flag++; else if (version == '12.2(29a)SV') flag++; else if (version == '12.2(29)SV3') flag++; else if (version == '12.2(29)SV2') flag++; else if (version == '12.2(29)SV1') flag++; else if (version == '12.2(29)SV') flag++; else if (version == '12.2(28)SV2') flag++; else if (version == '12.2(28)SV1') flag++; else if (version == '12.2(28)SV') flag++; else if (version == '12.2(27)SV5') flag++; else if (version == '12.2(27)SV4') flag++; else if (version == '12.2(27)SV3') flag++; else if (version == '12.2(27)SV2') flag++; else if (version == '12.2(27)SV1') flag++; else if (version == '12.2(27)SV') flag++; else if (version == '12.2(26)SV1') flag++; else if (version == '12.2(26)SV') flag++; else if (version == '12.2(25)SV3') flag++; else if (version == '12.2(25)SV2') flag++; else if (version == '12.2(25)SV') flag++; else if (version == '12.2(24)SV1') flag++; else if (version == '12.2(24)SV') flag++; else if (version == '12.2(23)SV1') flag++; else if (version == '12.2(23)SV') flag++; else if (version == '12.2(22)SV1') flag++; else if (version == '12.2(22)SV') flag++; else if (version == '12.2(18)SV3') flag++; else if (version == '12.2(18)SV2') flag++; else if (version == '12.2(18)SV1') flag++; else if (version == '12.2(18)SV') flag++; else if (version == '12.2(33)STE0') flag++; else if (version == '12.2(33)SRD') flag++; else if (version == '12.2(33)SRC2') flag++; else if (version == '12.2(33)SRC1') flag++; else if (version == '12.2(33)SRC') flag++; else if (version == '12.2(33)SRB5') flag++; else if (version == '12.2(33)SRB4') flag++; else if (version == '12.2(33)SRB3') flag++; else if (version == '12.2(33)SRB2') flag++; else if (version == '12.2(33)SRB1') flag++; else if (version == '12.2(33)SRB') flag++; else if (version == '12.2(33)SRA7') flag++; else if (version == '12.2(33)SRA6') flag++; else if (version == '12.2(33)SRA5') flag++; else if (version == '12.2(33)SRA4') flag++; else if (version == '12.2(33)SRA3') flag++; else if (version == '12.2(33)SRA2') flag++; else if (version == '12.2(33)SRA1') flag++; else if (version == '12.2(33)SRA') flag++; else if (version == '12.2(18)SO7') flag++; else if (version == '12.2(18)SO6') flag++; else if (version == '12.2(18)SO5') flag++; else if (version == '12.2(18)SO4') flag++; else if (version == '12.2(18)SO3') flag++; else if (version == '12.2(18)SO2') flag++; else if (version == '12.2(18)SO1') flag++; else if (version == '12.2(29)SM4') flag++; else if (version == '12.2(29)SM3') flag++; else if (version == '12.2(29)SM2') flag++; else if (version == '12.2(29)SM1') flag++; else if (version == '12.2(29)SM') flag++; else if (version == '12.2(31)SGA8') flag++; else if (version == '12.2(31)SGA7') flag++; else if (version == '12.2(31)SGA6') flag++; else if (version == '12.2(31)SGA5') flag++; else if (version == '12.2(31)SGA4') flag++; else if (version == '12.2(31)SGA3') flag++; else if (version == '12.2(31)SGA2') flag++; else if (version == '12.2(31)SGA1') flag++; else if (version == '12.2(31)SGA') flag++; else if (version == '12.2(46)SG1') flag++; else if (version == '12.2(46)SG') flag++; else if (version == '12.2(44)SG1') flag++; else if (version == '12.2(44)SG') flag++; else if (version == '12.2(40)SG') flag++; else if (version == '12.2(37)SG1') flag++; else if (version == '12.2(37)SG') flag++; else if (version == '12.2(31)SG3') flag++; else if (version == '12.2(31)SG2') flag++; else if (version == '12.2(31)SG1') flag++; else if (version == '12.2(31)SG') flag++; else if (version == '12.2(25)SG4') flag++; else if (version == '12.2(25)SG3') flag++; else if (version == '12.2(25)SG2') flag++; else if (version == '12.2(25)SG1') flag++; else if (version == '12.2(25)SG') flag++; else if (version == '12.2(25)SEG3') flag++; else if (version == '12.2(25)SEG1') flag++; else if (version == '12.2(25)SEG') flag++; else if (version == '12.2(25)SEE4') flag++; else if (version == '12.2(25)SEE3') flag++; else if (version == '12.2(25)SEE2') flag++; else if (version == '12.2(25)SEE1') flag++; else if (version == '12.2(25)SEE') flag++; else if (version == '12.2(25)SED1') flag++; else if (version == '12.2(25)SED') flag++; else if (version == '12.2(25)SEC2') flag++; else if (version == '12.2(25)SEC1') flag++; else if (version == '12.2(25)SEC') flag++; else if (version == '12.2(25)SEB4') flag++; else if (version == '12.2(25)SEB3') flag++; else if (version == '12.2(25)SEB2') flag++; else if (version == '12.2(25)SEB1') flag++; else if (version == '12.2(25)SEB') flag++; else if (version == '12.2(25)SEA') flag++; else if (version == '12.2(46)SE') flag++; else if (version == '12.2(44)SE4') flag++; else if (version == '12.2(44)SE3') flag++; else if (version == '12.2(44)SE2') flag++; else if (version == '12.2(44)SE1') flag++; else if (version == '12.2(44)SE') flag++; else if (version == '12.2(40)SE1') flag++; else if (version == '12.2(40)SE') flag++; else if (version == '12.2(37)SE1') flag++; else if (version == '12.2(37)SE') flag++; else if (version == '12.2(35)SE5') flag++; else if (version == '12.2(35)SE4') flag++; else if (version == '12.2(35)SE3') flag++; else if (version == '12.2(35)SE2') flag++; else if (version == '12.2(35)SE1') flag++; else if (version == '12.2(35)SE') flag++; else if (version == '12.2(25)SE') flag++; else if (version == '12.2(20)SE4') flag++; else if (version == '12.2(20)SE3') flag++; else if (version == '12.2(20)SE1') flag++; else if (version == '12.2(20)SE') flag++; else if (version == '12.2(18)SE1') flag++; else if (version == '12.2(18)SE') flag++; else if (version == '12.2(33)SCB') flag++; else if (version == '12.2(33)SCA2') flag++; else if (version == '12.2(33)SCA1') flag++; else if (version == '12.2(33)SCA') flag++; else if (version == '12.2(27)SBC5') flag++; else if (version == '12.2(27)SBC4') flag++; else if (version == '12.2(27)SBC3') flag++; else if (version == '12.2(27)SBC2') flag++; else if (version == '12.2(27)SBC1') flag++; else if (version == '12.2(27)SBC') flag++; else if (version == '12.2(27)SBB4e') flag++; else if (version == '12.2(33)SB2') flag++; else if (version == '12.2(33)SB1') flag++; else if (version == '12.2(33)SB') flag++; else if (version == '12.2(31)SB9') flag++; else if (version == '12.2(31)SB8') flag++; else if (version == '12.2(31)SB7') flag++; else if (version == '12.2(31)SB6') flag++; else if (version == '12.2(31)SB5') flag++; else if (version == '12.2(31)SB3x') flag++; else if (version == '12.2(31)SB3') flag++; else if (version == '12.2(31)SB2') flag++; else if (version == '12.2(31)SB13') flag++; else if (version == '12.2(31)SB12') flag++; else if (version == '12.2(31)SB11') flag++; else if (version == '12.2(31)SB10') flag++; else if (version == '12.2(28)SB9') flag++; else if (version == '12.2(28)SB8') flag++; else if (version == '12.2(28)SB7') flag++; else if (version == '12.2(28)SB6') flag++; else if (version == '12.2(28)SB5c') flag++; else if (version == '12.2(28)SB5') flag++; else if (version == '12.2(28)SB4d') flag++; else if (version == '12.2(28)SB4') flag++; else if (version == '12.2(28)SB3') flag++; else if (version == '12.2(28)SB2') flag++; else if (version == '12.2(28)SB12') flag++; else if (version == '12.2(28)SB11') flag++; else if (version == '12.2(28)SB10') flag++; else if (version == '12.2(28)SB1') flag++; else if (version == '12.2(28)SB') flag++; else if (version == '12.2(30)S1') flag++; else if (version == '12.2(30)S') flag++; else if (version == '12.2(25)S9') flag++; else if (version == '12.2(25)S8') flag++; else if (version == '12.2(25)S7') flag++; else if (version == '12.2(25)S6') flag++; else if (version == '12.2(25)S5') flag++; else if (version == '12.2(25)S4') flag++; else if (version == '12.2(25)S3') flag++; else if (version == '12.2(25)S2') flag++; else if (version == '12.2(25)S15') flag++; else if (version == '12.2(25)S14') flag++; else if (version == '12.2(25)S13') flag++; else if (version == '12.2(25)S12') flag++; else if (version == '12.2(25)S11') flag++; else if (version == '12.2(25)S10') flag++; else if (version == '12.2(25)S1') flag++; else if (version == '12.2(25)S') flag++; else if (version == '12.2(22)S2') flag++; else if (version == '12.2(22)S1') flag++; else if (version == '12.2(22)S') flag++; else if (version == '12.2(20)S9') flag++; else if (version == '12.2(20)S8') flag++; else if (version == '12.2(20)S7') flag++; else if (version == '12.2(20)S6') flag++; else if (version == '12.2(20)S5') flag++; else if (version == '12.2(20)S4') flag++; else if (version == '12.2(20)S3') flag++; else if (version == '12.2(20)S2') flag++; else if (version == '12.2(20)S14') flag++; else if (version == '12.2(20)S13') flag++; else if (version == '12.2(20)S12') flag++; else if (version == '12.2(20)S11') flag++; else if (version == '12.2(20)S10') flag++; else if (version == '12.2(20)S1') flag++; else if (version == '12.2(20)S') flag++; else if (version == '12.2(18)S9') flag++; else if (version == '12.2(18)S8') flag++; else if (version == '12.2(18)S7') flag++; else if (version == '12.2(18)S6') flag++; else if (version == '12.2(18)S5') flag++; else if (version == '12.2(18)S4') flag++; else if (version == '12.2(18)S3') flag++; else if (version == '12.2(18)S2') flag++; else if (version == '12.2(18)S13') flag++; else if (version == '12.2(18)S12') flag++; else if (version == '12.2(18)S11') flag++; else if (version == '12.2(18)S10') flag++; else if (version == '12.2(18)S1') flag++; else if (version == '12.2(18)S') flag++; else if (version == '12.2(18)IXG') flag++; else if (version == '12.2(18)IXF1') flag++; else if (version == '12.2(18)IXF') flag++; else if (version == '12.2(18)IXE') flag++; else if (version == '12.2(18)IXD1') flag++; else if (version == '12.2(18)IXD') flag++; else if (version == '12.2(18)IXC') flag++; else if (version == '12.2(18)IXB2') flag++; else if (version == '12.2(18)IXB1') flag++; else if (version == '12.2(18)IXB') flag++; else if (version == '12.2(18)IXA') flag++; else if (version == '12.2(33)IRB') flag++; else if (version == '12.2(33)IRA') flag++; else if (version == '12.2(25)FZ') flag++; else if (version == '12.2(25)EZ1') flag++; else if (version == '12.2(25)EZ') flag++; else if (version == '12.2(25)EY4') flag++; else if (version == '12.2(25)EY3') flag++; else if (version == '12.2(25)EY2') flag++; else if (version == '12.2(25)EY1') flag++; else if (version == '12.2(25)EY') flag++; else if (version == '12.2(40)EX3') flag++; else if (version == '12.2(40)EX2') flag++; else if (version == '12.2(40)EX1') flag++; else if (version == '12.2(40)EX') flag++; else if (version == '12.2(25)EX1') flag++; else if (version == '12.2(25)EX') flag++; else if (version == '12.2(20)EX') flag++; else if (version == '12.2(25)EWA9') flag++; else if (version == '12.2(25)EWA8') flag++; else if (version == '12.2(25)EWA7') flag++; else if (version == '12.2(25)EWA6') flag++; else if (version == '12.2(25)EWA5') flag++; else if (version == '12.2(25)EWA4') flag++; else if (version == '12.2(25)EWA3') flag++; else if (version == '12.2(25)EWA2') flag++; else if (version == '12.2(25)EWA14') flag++; else if (version == '12.2(25)EWA13') flag++; else if (version == '12.2(25)EWA12') flag++; else if (version == '12.2(25)EWA11') flag++; else if (version == '12.2(25)EWA10') flag++; else if (version == '12.2(25)EWA1') flag++; else if (version == '12.2(25)EWA') flag++; else if (version == '12.2(20)EWA4') flag++; else if (version == '12.2(20)EWA3') flag++; else if (version == '12.2(20)EWA2') flag++; else if (version == '12.2(20)EWA1') flag++; else if (version == '12.2(20)EWA') flag++; else if (version == '12.2(25)EW') flag++; else if (version == '12.2(20)EW4') flag++; else if (version == '12.2(20)EW3') flag++; else if (version == '12.2(20)EW2') flag++; else if (version == '12.2(20)EW1') flag++; else if (version == '12.2(20)EW') flag++; else if (version == '12.2(18)EW7') flag++; else if (version == '12.2(18)EW6') flag++; else if (version == '12.2(18)EW5') flag++; else if (version == '12.2(18)EW4') flag++; else if (version == '12.2(18)EW3') flag++; else if (version == '12.2(18)EW2') flag++; else if (version == '12.2(18)EW1') flag++; else if (version == '12.2(18)EW') flag++; else if (version == '12.2(20)EU2') flag++; else if (version == '12.2(20)EU1') flag++; else if (version == '12.2(20)EU') flag++; if (get_kb_item("Host/local_checks_enabled")) { if (flag) { flag = 0; buf = cisco_command_kb_item("Host/Cisco/Config/show_running-config", "show running-config"); if (check_cisco_result(buf)) { if ( (preg(pattern:"vpdn enable", multiline:TRUE, string:buf)) && (preg(pattern:"protocol pptp", multiline:TRUE, string:buf)) ) { flag = 1; } if ( (preg(pattern:"vpdn enable", multiline:TRUE, string:buf)) && (preg(pattern:"protocol any", multiline:TRUE, string:buf)) ) { flag = 1; } if (preg(pattern:"alps local-peer ", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"encapsulation stun", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"encapsulation bstun", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"ncia server ", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"dlsw local-peer peer-id ", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"source-bridge [^\r\n]+ tcp", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"x25 map [^\r\n]+rbp", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"xot access-group ", multiline:TRUE, string:buf)) { flag = 1; } if (preg(pattern:"x25 routing", multiline:TRUE, string:buf)) { flag = 1; } } else if (cisco_needs_enable(buf)) { flag = 1; override = 1; } } } if (flag) { security_hole(port:0, extra:cisco_caveat(override)); exit(0); } else audit(AUDIT_HOST_NOT, "affected");

Summary

Vulnerable Configurations

Nessus

References