Cisco IOS Telnet Service DoS

2004-08-27T10:18:15
ID OSVDB:9265
Type osvdb
Reporter OSVDB
Modified 2004-08-27T10:18:15

Description

Vulnerability Description

Cisco IOS contains a flaw that may allow a remote denial of service. If an attacker sends a specially crafted TCP packet to ports used by the telnet and reverse telnet services all future connections to any service using VTYs (telnet, reverse telnet, RSH, SSH and HTTP remote managment) will be denied, and will result in loss of availability for the Cisco device.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the workaround provided in the Cisco security advisory.

Short Description

Cisco IOS contains a flaw that may allow a remote denial of service. If an attacker sends a specially crafted TCP packet to ports used by the telnet and reverse telnet services all future connections to any service using VTYs (telnet, reverse telnet, RSH, SSH and HTTP remote managment) will be denied, and will result in loss of availability for the Cisco device.

References:

Vendor URL: http://www.cisco.com Vendor Specific Advisory URL Security Tracker: 1011079 Secunia Advisory ID:12395 Keyword: CSCef46191 ISS X-Force ID: 17131 CVE-2004-1464 CERT VU: 384230