Cisco Universal Gateway Can Be Crashed By Remote Users Conducting Port Scans
|
|
SecurityTracker Alert ID: 1005493 |
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Oct 28 2002
|
Impact: Denial of service via network
|
Version(s): AS5350; 12.2 (11t)
|
Description: A denial of service vulnerability was reported in the Cisco AS5350. A remote user can cause the device to lock up.
It is reported that a remote user can conduct a port scan to cause the gateway to lock up. A power reset is reportedly required
to return to normal operations.
According to the report, the following nmap command can be used to trigger the flaw:
nmap
-dinsane -p 1-65535 ip.of.as5350
The vendor has reportedly been notified.
|
Impact: A remote user can cause the gateway to lock up.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.cisco.com/warp/public/cc/pd/as/as5350/ (Links to External Site)
|
Cause: Exception handling error
|
Reported By: Thomas Munn <munn@bigfoot.com>
|
Message History:
None.
|
Source Message Contents
|
Date: 28 Oct 2002 16:53:45 -0000
From: Thomas Munn <munn@bigfoot.com>
Subject: CISCO as5350 crashes with nmap connect scan
|
I have managed to "reduplicate" at least five times the
following scenario with a cisco as5250, with firmwrare
12.2 (11t) release firmware of cisco:
nmap -dinsane -p 1-65535 ip.of.as5350 This causes a
"hard" lockup, and the device must be powered off in
order to have functionality restored to it.
Mentioned to PSIRT at cisco, they didn't do anything.
Sincerely,
Thomas J. Munn
|
|
