Cisco Secure Access Control Server CSAdmin Connection Saturation DoS

2004-08-25T12:44:55
ID OSVDB:9182
Type osvdb
Reporter OSVDB
Modified 2004-08-25T12:44:55

Description

Vulnerability Description

Cisco Secure Access Control Server contains a flaw that may allow a remote attacker to crash the device. The issue is due to the CSAAdmin web-based management interface not properly handling multiple TCP connections. If an attacker initiates several concurrent TCP connections, the devices will stop responding to the requests, drop existing connections, and potentially crash requiring a reboot.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Cisco Systems, Inc. has released a patch to address this vulnerability.

Short Description

Cisco Secure Access Control Server contains a flaw that may allow a remote attacker to crash the device. The issue is due to the CSAAdmin web-based management interface not properly handling multiple TCP connections. If an attacker initiates several concurrent TCP connections, the devices will stop responding to the requests, drop existing connections, and potentially crash requiring a reboot.

References:

Vendor URL: http://www.cisco.com/ Vendor Specific Advisory URL Security Tracker: 1011065 Secunia Advisory ID:12386 Related OSVDB ID: 9183 Related OSVDB ID: 9185 Related OSVDB ID: 9184 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-08/1069.html Keyword: TCP port 2002 Keyword: CSCeb60017 Keyword: CSCec66913 ISS X-Force ID: 17115 CVE-2004-1458 Bugtraq ID: 11047