Test ID:	1.3.6.1.4.1.25623.1.0.10979
Category:	CISCO
Title:	CSCdt46181
Summary:	Uses SNMP to determine if a flaw is present
Description:	Point-to-Point Tunneling Protocol (PPTP) allows users to tunnel to an Internet Protocol (IP) network using a Point-to-Point Protocol (PPP). The protocol is described in RFC2637. PPTP implementation using Cisco IOS® software releases contains a vulnerability that will crash a router if it receives a malformed or crafted PPTP packet. To expose this vulnerability, PPTP must be enabled on the router. PPTP is disabled by default. No additional special conditions are required. An attacker may use this issue to prevent your network from working properly This vulnerability is documented as Cisco Bug ID CSCdt46181 Solution : http://www.cisco.com/warp/public/707/PPTP-vulnerability-pub.html Risk factor : High *** As Nessus solely relied on the banner of the remote host *** this might be a false positive
Cross-Ref:	BugTraq ID: 3022 Common Vulnerability Exposure (CVE) ID: CVE-2001-1183 Cisco Security Advisory: 20010712 Cisco IOS PPTP Vulnerability http://www.cisco.com/warp/public/707/PPTP-vulnerability-pub.html CERT/CC vulnerability note: VU#656315 http://www.kb.cert.org/vuls/id/656315 http://www.securityfocus.com/bid/3022 XForce ISS Database: cisco-ios-pptp-dos(6835) http://xforce.iss.net/static/6835.php http://www.osvdb.org/802
Copyright	This script is (C) 2002 Renaud Deraison

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: