Korean

<< Back VID 29057 Severity 40 Port 161 Protocol UDP Class CISCO Detailed Description The Cisco CatOS has a Telnet buffer overflow vulnerability(CISCO Bug ID CSCdw19195). This vulnerability can be exploited to produce a denial of service (DoS) attack. When the vulnerability is exploited it can cause the Cisco Catalyst switch to crash and reload. Some Cisco Catalyst switches, running certain CatOS-based software releases, have a vulnerability wherein a buffer overflow in the Telnet option handling can cause the Telnet daemon to crash and result in a switch reload. Once the switch has reloaded, it is still vulnerable and the attack can be repeated as long as the switch is IP reachable on port 23 and has not been upgraded to a fixed version of CatOS switch software. * Note: This check solely relied on the version number of the remote system to assess this vulnerability, so this might be a false positive. Also, it requires a read access SNMP community string to collect the version number. To provide this access, add the valid community string to the check item, "snmp/guessable/r" from the Policy Editor. * References: http://www.cisco.com/warp/public/707/catos-telrcv-vuln-pub.shtml http://online.securityfocus.com/archive/1/252833 http://www.cert.org/advisories/CA-2001-21.html * Platforms Affected: Catalyst 6000 series Catalyst 5000 series Catalyst 4000 series Catalyst 2948G, 2980G, 2980G-A, 4912G - use Catalyst 4000 series code base Catalyst 2901, 2902, 2926[T,F,GS,GL], 2948 - use Catalyst 5000 series code base Recommendation Upgrade to the fixed version of Cisco CatOS, as listed in "Software Versions and Fixes" of Cisco Security Advisory, http://www.cisco.com/warp/public/707/catos-telrcv-vuln-pub.shtml . Upgrades should be obtained through the Software Center on Cisco's Worldwide Web site at http://www.cisco.com . For workarounds, see also "Workarounds" of Cisco Security Advisory (Cisco CatOS Telnet Buffer Vulnerability) above. Related URL CVE-2001-0554 (CVE) Related URL 3064 (SecurityFocus) Related URL 6875 (ISS)