Cisco IOS Data-link Switching (DLSw) Capabilities Exchange Remote DoS

2007-01-10T05:03:43
ID OSVDB:32683
Type osvdb
Reporter OSVDB
Modified 2007-01-10T05:03:43

Description

Vulnerability Description

Cisco IOS contains a flaw that may allow a remote attacker to crash the router. The issue is due to the Data-link Switching (DLSw) feature not properly handling DLSw messages. During the capabilities exchange, if an attacker sends a malformed packet with an invalid value, the router will crash.

Short Description

Cisco IOS contains a flaw that may allow a remote attacker to crash the router. The issue is due to the Data-link Switching (DLSw) feature not properly handling DLSw messages. During the capabilities exchange, if an attacker sends a malformed packet with an invalid value, the router will crash.

References:

Vendor Specific Advisory URL Security Tracker: 1017498 Secunia Advisory ID:23697 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0276.html FrSIRT Advisory: ADV-2007-0139 CVE-2007-0199 Bugtraq ID: 21990