| VID |
29158 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
CISCO |
| Detailed Description |
The CISCO IOS system does not disable CDP service. The Cisco Discovery Protocol(CDP) is a proprietary protocol that Cisco devices use to identify each other on a LAN segment. It is useful only in specialized situations, and is considered to be a security risk. There have been published denial of service attacks that use CDP. CDP should be completely disabled unless there is a need for it.
* Platforms Affected:
CISCO IOS |
| Recommendation |
Disable CDP service as follows :
Router# config terminal
Router(config)# no cdp run
or on each interface :
Router# config terminal
Router(config)# interface FastEthernet0/1
Router(config-if)# no cdp enable |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
