| VID |
29157 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
CISCO |
| Detailed Description |
The CISCO IOS system does not disable bootp server. Bootp allows a router to act as a BOOTP server for other routers; thereby allowing them to load their operating system over the network from the router acting as the Bootp server. A hacker could use the BOOTP service to download a copy of the router's IOS software. The tools for this type of attack are available on the Internet. So if not required, the BOOTP service should be disabled.
* Platforms Affected:
CISCO IOS |
| Recommendation |
Disable Bootp server as follows :
Router# config terminal
Router(config)# no ip bootp server |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
