Warning found on port unknown (161/tcp)
Cisco IOS Software contains a flaw that permits the successful
prediction of TCP Initial Sequence Numbers.
This vulnerability is present in all released versions of Cisco IOS
software running on Cisco routers and switches. It only affects the
security of TCP connections that originate or terminate on the
affected Cisco device itself
it does not apply to TCP traffic
forwarded through the affected device in transit between two other
hosts.
This vulnerability is documented as Cisco bug ID CSCds04747.
Solution :
http://www.cisco.com/warp/public/707/gsraclbypassdos-pub.shtml
Risk factor : Medium
*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive
This Solution URL is incorrect. The correct URL is http://www.cisco.com/warp/public/707/ios-tcp-isn-random-pub.shtml
--- CSCds04747.nasl~ Wed Jun 19 19:18:45 2002 +++ CSCds04747.nasl Mon Jul 22 16:52:26 2002 @@ -31,7 +31,7 @@ This vulnerability is documented as Cisco bug ID CSCds04747. Solution : -http://www.cisco.com/warp/public/707/gsraclbypassdos-pub.shtml +http://www.cisco.com/warp/public/707/ios-tcp-isn-random-pub.shtml Risk factor : Medium *** As Nessus solely relied on the banner of the remote host David -- I may have the information you need and I may choose only HTML. It's up to you. Disclaimer: I am not responsible for any email that you send me nor am I bound to any obligation to deal with any received email in any given fashion. If you send me spam or a virus, I may in whole or part send you 50,000 return copies of it. I may also publically announce any and all emails and post them to message boards, news sites, and even parody sites. I may also mark them up, cut and paste, print, and staple them to telephone poles for the enjoyment of people without internet access. This is not a confidential medium and your assumption that your email can or will be handled confidentially is akin to baring your backside, burying your head in the ground, and thinking nobody can see you butt nekkid and in plain view for miles away. Don't be a cluebert, buy one from K-mart today.
