ID CVE-2005-4437
Summary MD5 Neighbor Authentication in Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS 11.3 and later, does not include the Message Authentication Code (MAC) in the checksum, which allows remote attackers to sniff message hashes and (1) replay EIGRP HELLO messages or (2) cause a denial of service by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.
References
Vulnerable Configurations
  • cpe:2.3:a:extended_interior_gateway_routing_protocol:extended_interior_gateway_routing_protocol:1.2
    cpe:2.3:a:extended_interior_gateway_routing_protocol:extended_interior_gateway_routing_protocol:1.2
CVSS
Base: 7.5 (as of 21-12-2005 - 09:14)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
oval via4
accepted 2008-09-08T04:00:41.335-04:00
class vulnerability
contributors
name Yuzheng Zhou
organization Hewlett-Packard
description MD5 Neighbor Authentication in Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS 11.3 and later, does not include the Message Authentication Code (MAC) in the checksum, which allows remote attackers to sniff message hashes and (1) replay EIGRP HELLO messages or (2) cause a denial of service by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.
family ios
id oval:org.mitre.oval:def:5741
status accepted
submitted 2008-05-26T11:06:36.000-04:00
title Cisco "EIGRP" Protocol "HELLO" Packet Replay Vulnerability
version 3
refmap via4
bid 15970
bugtraq
  • 20051219 Authenticated EIGRP DoS / Information leak
  • 20051220 Re: Unauthenticated EIGRP DoS
fulldisc
  • 20051219 Authenticated EIGRP DoS / Information leak
  • 20051220 RE: Authenticated EIGRP DoS / Information leak
sectrack 1015382
sreason 274
vupen ADV-2005-3008
Last major update 17-10-2016 - 23:38
Published 20-12-2005 - 20:03
Last modified 19-10-2018 - 11:40
Back to Top