SecurityTeam US - Cisco IOS Secure Shell Server Denial of Service Vulnerabilities


	Contribute : Advanced Search : Web Resources : Polls : File Repository

Poll
What would you like to see on SecurityTeamUS? More News Product Reviews HowTo's Custom RPM/Packages/Tools Other (Please leave comment) Results 96 votes \| 0 comments

Topics
Home Apache Apple Application Software Cisco Systems Database Servers Internet Explorer Linux Macromedia Microsoft Mozilla/Firefox Phishing/ID Theft Real Networks Security News Sun Microsystems Web Appliances/Devices Web Scripts Wi-Fi

Virus Alerts
17 Apr 2011 Troj/Mdrop-DKE 17 Apr 2011 Troj/Sasfis-O 17 Apr 2011 Troj/Keygen-FU 17 Apr 2011 Troj/Zbot-AOY 17 Apr 2011 Troj/Zbot-AOW 17 Apr 2011 W32/Womble-E 17 Apr 2011 Troj/VB-FGD 17 Apr 2011 Troj/FakeAV-DFF 17 Apr 2011 Troj/SWFLdr-W 17 Apr 2011 W32/RorpiaMem-A

Events
There are no upcoming events

Welcome to SecurityTeam US
Monday, February 06 2012 @ 12:58 PM EST

Cisco IOS Secure Shell Server Denial of Service Vulnerabilities

Friday, April 08 2005 @ 10:47 AM EDT

Two vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to cause a DoS (Denial of Service).

1) An error when acting as a SSH v2 server for remote management and authenticating against a TACACS+ server can be exploited to cause a vulnerable device to reload.

2) A memory leak can be exploited to exhaust memory resources when authenticating SSH users against a TACACS+ server and login fails due to invalid credentials.

OPERATING SYSTEM:
Cisco IOS R12.x
Cisco IOS 12.x

SOLUTION:
See patch matrix in the vendor advisory for information about fixes.
http://www.cisco.com/warp/public/707/cisco-sa-20050406-ssh.shtml#software

PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.

ORIGINAL ADVISORY:
http://www.cisco.com/warp/public/707/cisco-sa-20050406-ssh.shtml

VERIFY ADVISORY:
http://secunia.com/advisories/14854/

Secunia Security Advisories

What's Related
http://www.cisco.com/wa... http://www.cisco.com/wa... http://secunia.com/advi... More from Cisco Systems

Story Options
Mail Story to a Friend Printable Story Format

Cisco IOS Secure Shell Server Denial of Service Vulnerabilities | 0 comments | Create New Account

The following comments are owned by whomever posted them. This site is not responsible for what they say.

Dedicated Servers
Created this page in 0.16 seconds