Vulnerabilities > CVE-2011-3270 - Unspecified vulnerability in Cisco 10008 Router and IOS

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

nessus

NVD

Published: 2011-10-03

Updated: 2012-05-14

Summary

Unspecified vulnerability in Cisco IOS 12.2SB before 12.2(33)SB10 and 15.0S before 15.0(1)S3a on Cisco 10000 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of crafted ICMP packets, aka Bug ID CSCtk62453.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS 12.2\(28\)Sb Cisco IOS 12.2\(28\)Sb1 Cisco IOS 12.2\(28\)Sb2 Cisco IOS 12.2\(28\)Sb3 Cisco IOS 12.2\(28\)Sb4 Cisco IOS 12.2\(28\)Sb5 Cisco IOS 12.2\(28\)Sb6 Cisco IOS 12.2\(28\)Sb7 Cisco IOS 12.2\(28\)Sb8 Cisco IOS 12.2\(28\)Sb9 Cisco IOS 12.2\(28\)Sb10 Cisco IOS 12.2\(28\)Sb11 Cisco IOS 12.2\(28\)Sb12 Cisco IOS 12.2\(28\)Sb13 Cisco IOS 12.2\(31\)Sb2 Cisco IOS 12.2\(31\)Sb3 Cisco IOS 12.2\(31\)Sb3X Cisco IOS 12.2\(31\)Sb5 Cisco IOS 12.2\(31\)Sb6 Cisco IOS 12.2\(31\)Sb7 Cisco IOS 12.2\(31\)Sb8 Cisco IOS 12.2\(31\)Sb9 Cisco IOS 12.2\(31\)Sb10 Cisco IOS 12.2\(31\)Sb11 Cisco IOS 12.2\(31\)Sb12 Cisco IOS 12.2\(31\)Sb13 Cisco IOS 12.2\(31\)Sb14 Cisco IOS 12.2\(31\)Sb15 Cisco IOS 12.2\(31\)Sb16 Cisco IOS 12.2\(31\)Sb17 Cisco IOS 12.2\(31\)Sb18 Cisco IOS 12.2\(31\)Sb19 Cisco IOS 12.2\(31\)Sb20 Cisco IOS 12.2\(31\)Sb21 Cisco IOS 12.2\(33\)Sb Cisco IOS 12.2\(33\)Sb1 Cisco IOS 12.2\(33\)Sb2 Cisco IOS 12.2\(33\)Sb3 Cisco IOS 12.2\(33\)Sb4 Cisco IOS 12.2\(33\)Sb5 Cisco IOS 12.2\(33\)Sb6 Cisco IOS 12.2\(33\)Sb7 Cisco IOS 12.2\(33\)Sb8 Cisco IOS 12.2\(33\)Sb8A Cisco IOS 12.2\(33\)Sb9 Cisco IOS 12.2Sb Cisco IOS 15.0\(1\)S1 Cisco IOS 15.0\(1\)S2 Cisco IOS 15.0S	49
Hardware	Cisco Cisco 10008 Router *	1

Nessus

NASL family	CISCO
NASL id	CISCO-SA-20110928-C10KHTTP.NASL
description	The Cisco 10000 Series Router is affected by a denial of service (DoS) vulnerability where an attacker could cause a device reload by sending a series of ICMP packets. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are also available.
last seen	2020-06-01
modified	2020-06-02
plugin id	56313
published	2011-09-29
reporter	This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/56313
title	Cisco 10000 Series Denial of Service Vulnerability (cisco-sa-20110928-c10k)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Cisco Security Advisory cisco-sa-20110928-c10k. # The text itself is copyright (C) Cisco # include("compat.inc"); if (description) { script_id(56313); script_version("1.11"); script_cvs_date("Date: 2018/11/15 20:50:20"); script_cve_id("CVE-2011-3270"); script_xref(name:"CISCO-BUG-ID", value:"CSCtk62453"); script_xref(name:"CISCO-SA", value:"cisco-sa-20110928-c10k"); script_name(english:"Cisco 10000 Series Denial of Service Vulnerability (cisco-sa-20110928-c10k)"); script_summary(english:"Checks the IOS version."); script_set_attribute( attribute:"synopsis", value:"The remote device is missing a vendor-supplied security patch." ); script_set_attribute( attribute:"description", value: "The Cisco 10000 Series Router is affected by a denial of service (DoS) vulnerability where an attacker could cause a device reload by sending a series of ICMP packets. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are also available." ); # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20110928-c10k script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?2c5fe318" ); script_set_attribute( attribute:"solution", value: "Apply the relevant patch referenced in Cisco Security Advisory cisco-sa-20110928-c10k." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:ios"); script_set_attribute(attribute:"vuln_publication_date", value:"2011/09/28"); script_set_attribute(attribute:"patch_publication_date", value:"2012/09/21"); script_set_attribute(attribute:"plugin_publication_date", value:"2011/09/29"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc."); script_family(english:"CISCO"); script_dependencies("cisco_ios_version.nasl"); script_require_keys("Host/Cisco/IOS/Version"); exit(0); } include("audit.inc"); include("cisco_func.inc"); flag = 0; version = get_kb_item_or_exit("Host/Cisco/IOS/Version"); if ( version == '12.2(31)SB18' ) flag++; if ( version == '12.2(31)SB19' ) flag++; if ( version == '12.2(33)SB9' ) flag++; if ( version == '15.0(1)S' ) flag++; if ( version == '15.0(1)S1' ) flag++; if ( version == '15.0(1)S2' ) flag++; if (flag) { security_hole(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");

Summary

Vulnerable Configurations

Nessus

References