Cisco CatOS TCP-ACK DoS

2004-06-10T07:20:07
ID OSVDB:6829
Type osvdb
Reporter OSVDB
Modified 2004-06-10T07:20:07

Description

Vulnerability Description

Cisco CATOS contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker initiates a TCP session but does not send the final ACK packet, but instead sends a malformed response which may cause the connection to enter an invalid TCP state and will result in loss of availability for the Cisco device.

Solution Description

Upgrade to versions 8.3(2)GLX, 8.2(2), 7.6(6), 6.4(9) and 5.5(20) or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Cisco CATOS contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker initiates a TCP session but does not send the final ACK packet, but instead sends a malformed response which may cause the connection to enter an invalid TCP state and will result in loss of availability for the Cisco device.

References:

Security Tracker: 1010444 Secunia Advisory ID:11821 Other Advisory URL: http://www.cisco.com/warp/public/707/cisco-sa-20040609-catos.shtml ISS X-Force ID: 16370 CVE-2004-0551