Cisco IOS ICMP重定向路由表可修改漏洞

发布时间：2003-02-11
更新时间：2003-02-11
严重程度：高
威胁程度：远程拒绝服务
错误类型：配置错误
利用方式：客户机模式

BUGTRAQ ID：6823

受影响系统

Cisco IOS 11.2 XA
Cisco IOS 11.2 SA
Cisco IOS 11.2 P
Cisco IOS 11.2 GS
Cisco IOS 11.2 F
Cisco IOS 11.2 BC
Cisco IOS 11.3 XA
Cisco IOS 11.3 T
Cisco IOS 11.3 NA
Cisco IOS 11.3 MA
Cisco IOS 11.3 HA
Cisco IOS 11.3 DB
Cisco IOS 11.3 DA
Cisco IOS 11.3 AA
Cisco IOS 11.3
Cisco IOS 12.0 XW
Cisco IOS 12.0 XV
Cisco IOS 12.0 XU
Cisco IOS 12.0 XS
Cisco IOS 12.0 XR
Cisco IOS 12.0 XQ
Cisco IOS 12.0 XP
Cisco IOS 12.0 XN
Cisco IOS 12.0 XM
Cisco IOS 12.0 XL
Cisco IOS 12.0 XK
Cisco IOS 12.0 XJ
Cisco IOS 12.0 XI
Cisco IOS 12.0 XH
Cisco IOS 12.0 XG
Cisco IOS 12.0 XF
Cisco IOS 12.0 XE
Cisco IOS 12.0 XD
Cisco IOS 12.0 XC
Cisco IOS 12.0 XB
Cisco IOS 12.0 XA
Cisco IOS 12.0 WX
Cisco IOS 12.0 WT
Cisco IOS 12.0 WC
Cisco IOS 12.0 WC
Cisco IOS 12.0 WC
Cisco IOS 12.0 T
Cisco IOS 12.0 SX
Cisco IOS 12.0 ST
Cisco IOS 12.0 SP
Cisco IOS 12.0 SL
Cisco IOS 12.0 SC
Cisco IOS 12.0 S
Cisco IOS 12.0 DC
Cisco IOS 12.0 DB
Cisco IOS 12.0 DA
Cisco IOS 12.0
Cisco IOS 12.1 YI
Cisco IOS 12.1 YH
Cisco IOS 12.1 YF
Cisco IOS 12.1 YE
Cisco IOS 12.1 YD
Cisco IOS 12.1 YC
Cisco IOS 12.1 YB
Cisco IOS 12.1 YA
Cisco IOS 12.1 XZ
Cisco IOS 12.1 XY
Cisco IOS 12.1 XX
Cisco IOS 12.1 XW
Cisco IOS 12.1 XV
Cisco IOS 12.1 XU
Cisco IOS 12.1 XT
Cisco IOS 12.1 XS
Cisco IOS 12.1 XR
Cisco IOS 12.1 XQ
Cisco IOS 12.1 XP
Cisco IOS 12.1 XM
Cisco IOS 12.1 XL
Cisco IOS 12.1 XK
Cisco IOS 12.1 XJ
Cisco IOS 12.1 XI
Cisco IOS 12.1 XH
Cisco IOS 12.1 XG
Cisco IOS 12.1 XF
Cisco IOS 12.1 XE
Cisco IOS 12.1 XD
Cisco IOS 12.1 XC
Cisco IOS 12.1 XB
Cisco IOS 12.1 XA
Cisco IOS 12.1 T
Cisco IOS 12.1 EZ
Cisco IOS 12.1 EY
Cisco IOS 12.1 EX
Cisco IOS 12.1 EC
Cisco IOS 12.1 EA
Cisco IOS 12.1 E
Cisco IOS 12.1 DC
Cisco IOS 12.1 DB
Cisco IOS 12.1 DA
Cisco IOS 12.1 CX
Cisco IOS 12.1 AA
Cisco IOS 12.1 0S
Cisco IOS 12.1
Cisco IOS 12.2 YH
Cisco IOS 12.2 YG
Cisco IOS 12.2 YF
Cisco IOS 12.2 YD
Cisco IOS 12.2 YC
Cisco IOS 12.2 YB
Cisco IOS 12.2 YA
Cisco IOS 12.2 XW
Cisco IOS 12.2 XT
Cisco IOS 12.2 XS
Cisco IOS 12.2 XR
Cisco IOS 12.2 XQ
Cisco IOS 12.2 XQ
Cisco IOS 12.2 XN
Cisco IOS 12.2 XM
Cisco IOS 12.2 XL
Cisco IOS 12.2 XK
Cisco IOS 12.2 XK
Cisco IOS 12.2 XK
Cisco IOS 12.2 XJ
Cisco IOS 12.2 XJ
Cisco IOS 12.2 XI
Cisco IOS 12.2 XH
Cisco IOS 12.2 XG
Cisco IOS 12.2 XF
Cisco IOS 12.2 XE
Cisco IOS 12.2 XD
Cisco IOS 12.2 XC
Cisco IOS 12.2 XB
Cisco IOS 12.2 XA
Cisco IOS 12.2 T
Cisco IOS 12.2 S
Cisco IOS 12.2 PI
Cisco IOS 12.2 PB
Cisco IOS 12.2 MB
Cisco IOS 12.2 DD
Cisco IOS 12.2 DA
Cisco IOS 12.2 BX
Cisco IOS 12.2 BC
Cisco IOS 12.2 B
Cisco IOS 12.2

详细描述
CISCO IOS存在一个漏洞，攻击者可以对路由表进行恶意修改。

如果一个脆弱的路由器上关闭了IP路由，那么此路由器可能接受恶意的ICMP重定向包，并且相应修改它的路由界面。

如果IP路由表使用的情况下(默认使能)，ICMP重定向包会接收并辨认，不过会忽略，路由器不会根据重定向包更新路由表。

攻击者可以指定在本地网络中不存在的一个缺省网关，导致受影响路由器拒绝转发从本地外部的通信。

解决方案
关闭ICMP重定向：

Router(config)#no ip icmp redirect

相关信息
发现者：Damir Rajnovic <gaus@cisco.com>
相关信息：http://online.securityfocus.com/archive/1/311336

最近严重漏洞

Cisco IOS ICMP重定向路由表可修改漏洞