Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4436

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2005-4436
Last Modified 07 Mar 2011 09:28:15
Published 20 Dec 2005 08:03:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4436

Summary

Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS after 12.3(2), 12.3(3)B, and 12.3(2)T and other products, allows remote attackers to cause a denial of service by sending a "spoofed neighbor announcement" with (1) mismatched k values or (2) "goodbye message" Type-Length-Value (TLV).

Vulnerable Systems


References

VUPEN - ADV-2005-3008

BUGTRAQ - 20051220 Re: Unauthenticated EIGRP DoS

FULLDISC - 20051220 RE: Authenticated EIGRP DoS / Information leak

FULLDISC - 20051219 Unauthenticated EIGRP DoS

BID - 15978

SECTRACK - 1015382


Last Updated: 27 May 2016 10:41:18