Lucene search
Copyright (C) 2015 Greenbone Networks GmbHOPENVAS:1361412562310106050HistoryNov 25, 2015 - 12:00 a.m.
Cisco ASA DHCPv6 Relay DoS Vulnerability (cisco-sa-20151021-asa-dhcp1)
2015-11-2500:00:00
Copyright (C) 2015 Greenbone Networks GmbH
plugins.openvas.org
6
A vulnerability in the DHCPv6 relay feature of Cisco ASA may
lead to a denial of service.
# Copyright (C) 2015 Greenbone Networks GmbH
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
CPE = "cpe:/a:cisco:asa";
if (description)
{
script_oid("1.3.6.1.4.1.25623.1.0.106050");
script_version("2022-02-14T11:00:04+0000");
script_tag(name:"last_modification", value:"2022-02-14 11:00:04 +0000 (Mon, 14 Feb 2022)");
script_tag(name:"creation_date", value:"2015-11-25 11:40:51 +0700 (Wed, 25 Nov 2015)");
script_tag(name:"cvss_base", value:"7.1");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:N/A:C");
script_tag(name:"qod_type", value:"remote_banner");
script_tag(name:"solution_type", value:"VendorFix");
script_cve_id("CVE-2015-6324");
script_name("Cisco ASA DHCPv6 Relay DoS Vulnerability (cisco-sa-20151021-asa-dhcp1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2015 Greenbone Networks GmbH");
script_family("CISCO");
script_dependencies("gb_cisco_asa_version.nasl", "gb_cisco_asa_version_snmp.nasl");
script_mandatory_keys("cisco_asa/version", "cisco_asa/model");
script_tag(name:"summary", value:"A vulnerability in the DHCPv6 relay feature of Cisco ASA may
lead to a denial of service.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"A vulnerability in the DHCPv6 relay feature of Cisco ASA
software could allow an unauthenticated, remote attacker to cause an affected device to reload.
The vulnerability is due to insufficient validation of DHCPv6 packets. Cisco ASA Software is
affected by this vulnerability only if the software is configured with the DHCPv6 relay feature.
An attacker could exploit this vulnerability by sending crafted DHCPv6 packets to an affected
device.");
script_tag(name:"impact", value:"An unauthenticated, remote attacker could cause a device reload
leading to a denial of service condition.");
script_tag(name:"affected", value:"Version 9.0, 9.1, 9.2, 9.3 and 9.4 on Cisco ASA 5500 Series
Adaptive Security Appliances, Cisco ASA 5500-X Series Next-Generation Firewalls, Cisco ASA
Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, Cisco ASA
1000V Cloud Firewall and Cisco Adaptive Security Virtual Appliance (ASAv).");
script_tag(name:"solution", value:"Apply the appropriate updates from Cisco. As a workaround
disable the DHCPv6 relay feature.");
script_xref(name:"URL", value:"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dhcp1");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
model = get_kb_item("cisco_asa/model");
if (!model || (toupper(model) !~ "^ASAv" && toupper(model) !~ "^ASA55[0-9][0-9]"))
exit(99);
if (!version = get_app_version(cpe: CPE, nofork: TRUE))
exit(0);
if (version_in_range_exclusive(version: version, test_version_lo: "9.0", test_version_up: "9.0.4.37")) {
report = report_fixed_ver(installed_version: version, fixed_version: "9.0(4.37)");
security_message(port: 0, data: report);
exit(0);
}
if (version_in_range_exclusive(version: version, test_version_lo: "9.1", test_version_up: "9.1.6.6")) {
report = report_fixed_ver(installed_version: version, fixed_version: "9.1(6.6)");
security_message(port: 0, data: report);
exit(0);
}
if (version_in_range_exclusive(version: version, test_version_lo: "9.2", test_version_up: "9.2.4")) {
report = report_fixed_ver(installed_version: version, fixed_version: "9.2(4)");
security_message(port: 0, data: report);
exit(0);
}
if (version_in_range_exclusive(version: version, test_version_lo: "9.3", test_version_up: "9.3.3.6")) {
report = report_fixed_ver(installed_version: version, fixed_version: "9.3(3.6)");
security_message(port: 0, data: report);
exit(0);
}
if (version_in_range_exclusive(version: version, test_version_lo: "9.4", test_version_up: "9.4.2")) {
report = report_fixed_ver(installed_version: version, fixed_version: "9.4(2)");
security_message(port: 0, data: report);
exit(0);
}
exit(99);
Related
nessus
nessus
Cisco ASA DHCPv6 Relay DoS (cisco-sa-20151021-asa-dhcp1)
2016-09-15 00:00:00
prion
prion
Design/Logic Flaw
2015-10-25 02:59:00
cvelist
cvelist
CVE-2015-6324
2015-10-25 01:00:00
cve
cve
CVE-2015-6324
2015-10-25 02:59:00
cisco
cisco
Cisco ASA Software DHCPv6 Relay Denial of Service Vulnerability
2015-10-21 16:00:00
securityvulns
securityvulns
Cisco ASA multiple security vulnerabilities
2015-10-25 00:00:00
6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.4%
Related for OPENVAS:1361412562310106050