6.1 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:N/I:N/A:C
6.5 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
56.7%
According to its self-reported version, Cisco IOS is affected by a denial of service (DoS) vulnerability in the Autonomic Networking feature. An unauthenticated, adjacent attacker can exploit this by replaying captured packets to reset the Autonomic Control Plane (ACP) channel of an affected system in order to reset the ACP channel of an affected system, causing autonomic nodes of an affected system to reload and stop responding.
Please see the included Cisco BIDs and Cisco Security Advisory for more information.
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#TRUSTED 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
#TRUST-RSA-SHA256 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
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(131187);
script_version("1.16");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/05");
script_cve_id("CVE-2017-6663");
script_bugtraq_id(99973);
script_xref(name:"CISCO-BUG-ID", value:"CSCvd88936");
script_xref(name:"CISCO-SA", value:"cisco-sa-20170726-anidos");
script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/03/24");
script_xref(name:"IAVA", value:"2023-A-0574");
script_name(english:"Cisco IOS Autonomic Networking Infrastructure DoS (cisco-sa-20170726-anidos)");
script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch.");
script_set_attribute(attribute:"description", value:
"According to its self-reported version, Cisco IOS is affected by a denial of service (DoS) vulnerability in the
Autonomic Networking feature. An unauthenticated, adjacent attacker can exploit this by replaying captured packets to
reset the Autonomic Control Plane (ACP) channel of an affected system in order to reset the ACP channel of an affected
system, causing autonomic nodes of an affected system to reload and stop responding.
Please see the included Cisco BIDs and Cisco Security Advisory for more information.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
# https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170726-anidos
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?89580ea2");
script_set_attribute(attribute:"see_also", value:"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd88936");
script_set_attribute(attribute:"solution", value:
"No fixes are available. For more information, see Cisco bug ID(s) CSCvd88936.");
script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-6663");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/08/07");
script_set_attribute(attribute:"patch_publication_date", value:"2017/07/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/11/22");
script_set_attribute(attribute:"plugin_type", value:"combined");
script_set_attribute(attribute:"cpe", value:"cpe:/o:cisco:ios");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"CISCO");
script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("cisco_ios_version.nasl");
script_require_keys("Host/Cisco/IOS/Version");
exit(0);
}
include('cisco_workarounds.inc');
include('ccf.inc');
product_info = cisco::get_product_info(name:'Cisco IOS');
version_list = make_list(
'15.3(3)S2',
'15.3(3)S6',
'15.3(3)S1a',
'15.3(3)S5',
'15.3(3)S7',
'15.3(3)S8',
'15.3(3)S6a',
'15.3(3)S9',
'15.3(3)S10',
'15.3(3)S8a',
'15.2(3)E',
'15.2(4)E',
'15.2(3)E1',
'15.2(3)E2',
'15.2(3a)E',
'15.2(3)E3',
'15.2(3m)E2',
'15.2(4)E1',
'15.2(4)E2',
'15.2(3)E4',
'15.2(5)E',
'15.2(3m)E7',
'15.2(4)E3',
'15.2(5)E1',
'15.2(5b)E',
'15.2(3m)E8',
'15.2(3)E5',
'15.2(4s)E2',
'15.4(1)S',
'15.4(2)S',
'15.4(3)S',
'15.4(1)S1',
'15.4(1)S2',
'15.4(2)S1',
'15.4(1)S3',
'15.4(3)S1',
'15.4(2)S2',
'15.4(3)S2',
'15.4(3)S3',
'15.4(1)S4',
'15.4(2)S3',
'15.4(2)S4',
'15.4(3)S0d',
'15.4(3)S4',
'15.4(3)S0e',
'15.4(3)S5',
'15.4(3)S0f',
'15.4(3)S6',
'15.4(3)S7',
'15.4(3)S6a',
'15.4(3)S8',
'15.5(1)S',
'15.5(2)S',
'15.5(1)S1',
'15.5(3)S',
'15.5(1)S2',
'15.5(1)S3',
'15.5(2)S1',
'15.5(2)S2',
'15.5(3)S1a',
'15.5(2)S3',
'15.5(3)S2',
'15.5(3)S3',
'15.5(1)S4',
'15.5(2)S4',
'15.5(3)S4',
'15.5(3)S5',
'15.5(3)S6',
'15.5(3)S6a',
'15.5(3)S7',
'15.5(3)S6b',
'15.5(3)S8',
'15.5(3)S10',
'15.2(3)EA',
'15.2(4)EA',
'15.2(4)EA1',
'15.2(5)EA',
'15.2(4)EA4',
'15.2(4)EA5',
'15.2(4)EA6',
'15.4(2)SN',
'15.4(2)SN1',
'15.4(3)SN1',
'15.4(3)SN1a',
'15.5(1)SN',
'15.5(1)SN1',
'15.5(2)SN',
'15.5(3)SN0a',
'15.5(3)SN',
'15.6(1)S',
'15.6(2)S',
'15.6(2)S1',
'15.6(1)S1',
'15.6(1)S2',
'15.6(2)S2',
'15.6(1)S3',
'15.6(2)S3',
'15.6(1)S4',
'15.6(2)S4',
'15.6(1)T',
'15.6(2)T',
'15.6(1)T0a',
'15.6(1)T1',
'15.6(2)T1',
'15.6(1)T2',
'15.6(2)T0a',
'15.6(2)T2',
'15.6(1)T3',
'15.6(2)T3',
'15.6(2)SP',
'15.6(2)SP1',
'15.6(2)SP2',
'15.6(2)SP3',
'15.6(2)SP4',
'15.6(2)SP3b',
'15.6(2)SP5',
'15.6(2)SP7',
'15.6(2)SP8',
'15.6(1)SN',
'15.6(1)SN1',
'15.6(2)SN',
'15.6(1)SN2',
'15.6(1)SN3',
'15.6(3)SN',
'15.6(4)SN',
'15.6(5)SN',
'15.6(6)SN',
'15.6(7)SN',
'15.6(7)SN1',
'15.6(3)M',
'15.6(3)M1',
'15.6(3)M0a',
'15.6(3)M1a',
'15.6(3)M1b',
'15.6(3)M2',
'15.6(3)M2a',
'15.6(3)M3',
'15.6(3)M3a',
'15.6(3)M4',
'15.6(3)M5',
'15.6(3)M6',
'15.6(3)M7',
'15.6(3)M6a',
'15.6(3)M8',
'15.7(3)M',
'15.7(3)M1',
'15.7(3)M3',
'15.7(3)M2',
'15.7(3)M4',
'15.7(3)M5',
'15.7(3)M4a',
'15.7(3)M4b',
'15.7(3)M5a',
'15.7(3)M6',
'15.8(3)M',
'15.8(3)M0a',
'15.8(3)M2',
'15.8(3)M3',
'15.8(3)M4',
'15.9(3)M',
'15.9(3)M1',
'15.9(3)M0a',
'15.8(3)M3b'
);
workarounds = make_list(CISCO_WORKAROUNDS['generic_workaround']);
workaround_params = WORKAROUND_CONFIG['autonomic_networking'];
reporting = make_array(
'port' , product_info['port'],
'severity' , SECURITY_WARNING,
'version' , product_info['version'],
'bug_id' , 'CSCvd88936',
'cmds' , make_list('show running-config')
);
cisco::check_and_report(
product_info:product_info,
reporting:reporting,
vuln_versions:version_list,
workarounds:workarounds,
workaround_params:workaround_params
);
6.1 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:N/I:N/A:C
6.5 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
56.7%