2 matches found
Cisco IOS cTCP协议远程拒绝服务漏洞
BUGTRAQ ID: 34246 CVECAN ID: CVE-2009-0635 Cisco IOS是思科网络设备所使用的互联网操作系统。 在配置为Easy VPN服务器的Cisco IOS设备上,如果启用了Cisco隧道控制协议(cTCP)封装功能,则一系列TCP报文可能导致设备耗尽内存。 Cisco IOS 12.4 厂商补丁: Cisco ----- Cisco已经为此发布了一个安全公告(cisco-sa-20090325-ctcp)以及相应补丁: cisco-sa-20090325-ctcp:Cisco IOS cTCP Denial of Service...
CVE-2009-0635
Cisco IOS devices configured as EZVPN servers using the cTCP encapsulation feature are vulnerable to a memory exhaustion DoS caused by a crafted sequence of TCP packets. This affects Cisco IOS releases 12.4(9)T and later; Cisco has published fixes in updated software and recommends upgrading to a...