Vulnerability Description
MD5 Neighbor Authentication in Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS 11.3 and later, does not include the Message Authentication Code (MAC) in the checksum, which allows remote attackers to sniff message hashes and (1) replay EIGRP HELLO messages or (2) cause a denial of service by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Extended Interior Gateway Routing Protocol | Extended Interior Gateway Routing Protocol | 1.2 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040332.htmlVendor Advisory
- http://marc.info/?l=full-disclosure&m=113504451523186&w=2
- http://securityreason.com/securityalert/274
- http://securitytracker.com/id?1015382
- http://www.securityfocus.com/archive/1/419830/100/0/threaded
- http://www.securityfocus.com/archive/1/419898/100/0/threaded
- http://www.securityfocus.com/bid/15970
- http://www.vupen.com/english/advisories/2005/3008
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040332.htmlVendor Advisory
- http://marc.info/?l=full-disclosure&m=113504451523186&w=2
- http://securityreason.com/securityalert/274
- http://securitytracker.com/id?1015382
- http://www.securityfocus.com/archive/1/419830/100/0/threaded
- http://www.securityfocus.com/archive/1/419898/100/0/threaded
FAQ
What is CVE-2005-4437?
CVE-2005-4437 is a vulnerability with a CVSS score of 7.5 (HIGH). MD5 Neighbor Authentication in Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS 11.3 and later, does not include the Message Authentication Code (MAC) in the checksu...
How severe is CVE-2005-4437?
CVE-2005-4437 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4437?
Check the references section above for vendor advisories and patch information. Affected products include: Extended Interior Gateway Routing Protocol Extended Interior Gateway Routing Protocol.