Cisco IOS SNMP Message Processing Denial Of Service Vulnerability
I. Summary
Cisco Internetwork Operating System (IOS) 15.0 attempts to process SNMP solicited operations
on improper ports (UDP 161,162), which allows remote attackers to cause a denial of service
when SNMP is disabled.
II. Description
III. Impact
Denial of service (process consume all available CPU resources)
IV. Affected
Cisco router 2921/K9 IOS 15.0<1r>M6, tested with kubuntu 10.10. Previous versions may also be
affected due to code reuse.
V. Solution
Currently there are not any vendor-supplied patches for this issue.
VI. Credit
The penetration test team Of NCNIPC (China) is credited for this vulnerability.