Cisco TACACS+ tac_plus Server Malformed Packet Memory Exhaustion DoS

2000-05-30T00:00:00
ID OSVDB:1373
Type osvdb
Reporter Solar Designer(solar@false.com)
Modified 2000-05-30T00:00:00

Description

Vulnerability Description

TACACS+ contains a flaw that may allow a remote denial of service. The issue is triggered when sending a packet with a long length field, which causes the server to run out of memory, and will result in loss of availability for the service.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Solar Designer has released an unsupported patch to address this vulnerability.

Short Description

TACACS+ contains a flaw that may allow a remote denial of service. The issue is triggered when sending a packet with a long length field, which causes the server to run out of memory, and will result in loss of availability for the service.

References:

Vendor URL: http://www.cisco.com/en/US/hmpgs/index.html Vendor Specific Advisory URL Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-05/0369.html ISS X-Force ID: 4985 CVE-2000-0486 Bugtraq ID: 1293