Cisco IOS SSL Packets Multiple Denial Of Service Vulnerabilities

TITLE: Cisco IOS SSL Packets Multiple Denial Of Service Vulnerabilities
CLASS: Input Validation Error
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: May 22 2007 12:00AM
UPDATE: May 22 2007 11:17PM
CREDIT: The vendor disclosed these issues.
VULNERABLE:

Cisco IOS 12.4
Cisco IOS 12.3 YZ
Cisco IOS 12.2 ZN
Cisco IOS 12.2 ZJ
Cisco IOS 12.2 ZE
Cisco IOS 12.2 ZB
Cisco IOS 12.2 ZA
Cisco IOS 12.2 YZ
Cisco IOS 12.2 YY
Cisco IOS 12.2 YX
Cisco IOS 12.2 YW
Cisco IOS 12.2 YU
Cisco IOS 12.2 YR
Cisco IOS 12.2 YQ
Cisco IOS 12.2 YN
Cisco IOS 12.2 YM
Cisco IOS 12.2 YL
Cisco IOS 12.2 YJ
Cisco IOS 12.2 YF
Cisco IOS 12.2 YE
Cisco IOS 12.2 YD
Cisco IOS 12.2 YC
Cisco IOS 12.2 YB
Cisco IOS 12.2 YA
Cisco IOS 12.2 XW
Cisco IOS 12.2 XV
Cisco IOS 12.2 XU
Cisco IOS 12.2 XT
Cisco IOS 12.2 XS
Cisco IOS 12.2 XQ
Cisco IOS 12.2 XN
Cisco IOS 12.2 XM
Cisco IOS 12.2 XL
Cisco IOS 12.2 XK
Cisco IOS 12.2 XJ
Cisco IOS 12.2 XI
Cisco IOS 12.2 XH
Cisco IOS 12.2 XG
Cisco IOS 12.2 XF
Cisco IOS 12.2 XE
Cisco IOS 12.2 XD
Cisco IOS 12.2 TPC
Cisco IOS 12.2 SY
Cisco IOS 12.2 SXE
Cisco IOS 12.2 SXB
Cisco IOS 12.2 SXA
Cisco IOS 12.2 SX
Cisco IOS 12.2 SW
Cisco IOS 12.2 SV
Cisco IOS 12.2 SU
Cisco IOS 12.2 SRA
Cisco IOS 12.2 SGA
Cisco IOS 12.2 SEG
Cisco IOS 12.2 SEF
Cisco IOS 12.2 SEE
Cisco IOS 12.2 SED
Cisco IOS 12.2 SBC
Cisco IOS 12.2 S
Cisco IOS 12.2 JA
Cisco IOS 12.2 DD
Cisco IOS 12.2 CY
Cisco IOS 12.2 CX
Cisco IOS 12.2 BY
Cisco IOS 12.2 BW
Cisco IOS 12.2
Cisco IOS 12.1 YI
Cisco IOS 12.1 YF
Cisco IOS 12.1 YE
Cisco IOS 12.1 YD
Cisco IOS 12.1 YC
Cisco IOS 12.1 YB
Cisco IOS 12.1 XU
Cisco IOS 12.1 XT
Cisco IOS 12.1 XQ
Cisco IOS 12.1 XP
Cisco IOS 12.1 XM
Cisco IOS 12.1 XL
Cisco IOS 12.1 XJ
Cisco IOS 12.1 XI
Cisco IOS 12.1 XH
Cisco IOS 12.1 XG
Cisco IOS 12.1 XF
Cisco IOS 12.1 XD
Cisco IOS 12.1 XC
Cisco IOS 12.1 T
Cisco IOS 12.1 EY
Cisco IOS 12.1 EX
Cisco IOS 12.1 EW
Cisco IOS 12.1 EC
Cisco IOS 12.1 EB
Cisco IOS 12.1 EA
Cisco IOS 12.1 E
Cisco IOS 12.1 CX
Cisco IOS 12.1 AY
Cisco IOS 12.0 XV
Cisco IOS 12.0 XR
Cisco IOS 12.0 XQ
Cisco IOS 12.0 XN
Cisco IOS 12.0 XL
Cisco IOS 12.0 XK
Cisco IOS 12.0 XI
Cisco IOS 12.0 XH
Cisco IOS 12.0 XE
Cisco IOS 12.0 WC
Cisco IOS 12.0 T
Cisco IOS 12.4XT
Cisco IOS 12.4XP
Cisco IOS 12.4XE
Cisco IOS 12.4XD
Cisco IOS 12.4XC
Cisco IOS 12.4XB
Cisco IOS 12.4XA
Cisco IOS 12.4T
Cisco IOS 12.3YX
Cisco IOS 12.3YU
Cisco IOS 12.3YT
Cisco IOS 12.3YS
Cisco IOS 12.3YQ
Cisco IOS 12.3YH
Cisco IOS 12.3YG
Cisco IOS 12.3YF
Cisco IOS 12.3YD
Cisco IOS 12.3YA
Cisco IOS 12.3XX
Cisco IOS 12.3XW
Cisco IOS 12.3XU
Cisco IOS 12.3XS
Cisco IOS 12.3XR
Cisco IOS 12.3XQ
Cisco IOS 12.3XK
Cisco IOS 12.3XJ
Cisco IOS 12.3XI
Cisco IOS 12.3XH
Cisco IOS 12.3XG
Cisco IOS 12.3XF
Cisco IOS 12.3XE
Cisco IOS 12.3XD
Cisco IOS 12.3XC
Cisco IOS 12.3XB
Cisco IOS 12.3XA
Cisco IOS 12.3TPC
Cisco IOS 12.3T
Cisco IOS 12.3JX
Cisco IOS 12.3JK
Cisco IOS 12.3JA
Cisco IOS 12.3BC
Cisco IOS 12.3B
Cisco IOS 12.3
Cisco IOS 12.2ZX
Cisco IOS 12.2ZW
Cisco IOS 12.2ZV
Cisco IOS 12.2ZU
Cisco IOS 12.2ZL
Cisco IOS 12.2ZH
Cisco IOS 12.2ZF
Cisco IOS 12.2ZD
Cisco IOS 12.2YV
Cisco IOS 12.2XR
Cisco IOS 12.2XB
Cisco IOS 12.2XA
Cisco IOS 12.2T
Cisco IOS 12.2SXF
Cisco IOS 12.2SXD
Cisco IOS 12.2SG
Cisco IOS 12.2SEC
Cisco IOS 12.2SEB
Cisco IOS 12.2SEA
Cisco IOS 12.2SE
Cisco IOS 12.2JK
Cisco IOS 12.2IXB
Cisco IOS 12.2IXA
Cisco IOS 12.2FZ
Cisco IOS 12.2FY
Cisco IOS 12.2FX
Cisco IOS 12.2EZ
Cisco IOS 12.2EY
Cisco IOS 12.2EX
Cisco IOS 12.2EWA
Cisco IOS 12.2EW
Cisco IOS 12.2CZ
Cisco IOS 12.2BZ
Cisco IOS 12.2BC
Cisco IOS 12.2B
Cisco CBOS 12.1
NOT VULNERABLE:

Vai alla pagina originale su Security Focus

Discussion

Cisco IOS is prone to multiple denial-of-service vulnerabilities because it fails to handle malformed SSL packets.

Attackers can exploit these issues to cause denial-of-service conditions on an affected device.

NOTE: Attackers can exploit these issues only via an established TCP connection, but only prior to security authentication. An attacker can, however, interrupt a secure session and inject malicious packets when a new session is started. Due to these factors, the likelihood of successful attacks is reduced.

Exploit

Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.

Solution

Solution:
The vendor has released an advisory and fixes to address these issues. Please see the referenced advisory for details.

References

References:

PhpLog

BNLug Benevento Linux Users Group