CVE-2005-4437 - MD5 Neighbor Authentication in Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemente

CVE-2005-4437

Summary

MD5 Neighbor Authentication in Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS 11.3 and later, does not include the Message Authentication Code (MAC) in the checksum, which allows remote attackers to sniff message hashes and (1) replay EIGRP HELLO messages or (2) cause a denial of service by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.

References

Vulnerable Configurations

cpe:2.3:a:extended_interior_gateway_routing_protocol:extended_interior_gateway_routing_protocol:1.2:*:*:*:*:*:*:*
cpe:2.3:a:extended_interior_gateway_routing_protocol:extended_interior_gateway_routing_protocol:1.2:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 19-10-2018 - 15:40)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

oval via4

accepted

2008-09-08T04:00:41.335-04:00

class

vulnerability

contributors

name	Yuzheng Zhou
organization	Hewlett-Packard

description

family

ios

oval:org.mitre.oval:def:5741

status

accepted

submitted

2008-05-26T11:06:36.000-04:00

title

Cisco "EIGRP" Protocol "HELLO" Packet Replay Vulnerability

version

refmap via4

bid	15970
bugtraq	20051219 Authenticated EIGRP DoS / Information leak 20051220 Re: Unauthenticated EIGRP DoS
fulldisc	20051219 Authenticated EIGRP DoS / Information leak 20051220 RE: Authenticated EIGRP DoS / Information leak
sectrack	1015382
sreason	274
vupen	ADV-2005-3008

Last major update

19-10-2018 - 15:40

Published

21-12-2005 - 01:03

Last modified

19-10-2018 - 15:40