| VID |
29088 |
| Severity |
30 |
| Port |
161 |
| Protocol |
UDP |
| Class |
CISCO |
| Detailed Description |
The Cisco CatOS has a TCP-ACK Denial of Service (DoS) Vulnerability on the Telnet, HTTP and SSH service(Bug ID CSCec42751,CSCed45576, and CSCed48590).
The device which is running Cisco CatOS with the Telnet, HTTP or SSH service is susceptible to a TCP-ACK Denial of Service (DoS) attack. To exploit successfully this vulnerability, causes the Cisco CatOS running device to stop functioning and reload. A TCP-ACK DoS attack is conducted by not sending the regular final ACK required for a 3-way TCP handshake to complete, and instead sending an invalid response to move the connection to an invalid TCP state. This attack can be initiated from a remote spoofed source.
* Note: This check solely relied on the version number of the remote system to assess this vulnerability, so this might be a false positive. Also, it requires a read access SNMP community string to collect the version number. To provide this access, add the valid community string to the check item, "snmp/guessable/r" from the Policy Editor.
* References:
http://www.cisco.com/warp/public/707/cisco-sa-20040609-catos.shtml
* Platforms Affected:
Catalyst 6000 series, 5000 series, 4500 series, 4000 series
Catalyst 2948G, 2980G, 2980G-A, 4912G - use Catalyst 4000 series code base
Catalyst 2901, 2902, 2926[T,F,GS,GL], 2948 - use Catalyst 5000 series code base
8.xGLX (The earlier 8.xGLX than Cisco CatOS 8.3(2)GLX)
8.x (The earlier than Cisco CatOS 8.2(2))
7.x (The earlier than Cisco CatOS 7.6(6))
6.x (The earlier than Cisco CatOS 6.4(9))
5.x and earlier (The earlier than Cisco CatOS 5.5(20)) |
| Recommendation |
Upgrade to the fixed Cisco IOS version, as listed in "Software Versions and Fixes" of Cisco Security Advisory (Cisco CatOS Telnet, HTTP and SSH Vulnerability) at http://www.cisco.com/warp/public/707/cisco-sa-20040609-catos.shtml .
Upgrades should be obtained through the Software Center on Cisco's web site at http://www.cisco.com .
For details, see http://www.cisco.com/warp/public/707/cisco-sa-20040609-catos.shtml |
| Related URL |
(CVE) |
| Related URL |
10504 (SecurityFocus) |
| Related URL |
(ISS) |
|
