|
Cisco Various Products ICMP Message Handling Denial of Service
|
|
Secunia Advisory:
|
SA14904
|
|
|
Release Date:
|
2005-04-12
|
|
Last Update:
|
2005-04-13
|
|
Popularity:
|
19,017 views
|
|
|
Critical:
|
 Less critical
|
|
Impact:
|
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Partial Fix
|
|
| OS: | Cisco Content Services Switch 11000 Series (WebNS) Cisco IOS 10.x Cisco IOS 11.x Cisco IOS 12.x Cisco IOS R11.x Cisco IOS R12.x Cisco IOS XR 3.x Cisco ONS 15000 Series Cisco PIX 6.x Cisco SAN-OS 1.x (MDS 9000 Switches)
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description: Fernando Gont has published an Internet-Draft describing how ICMP (Internet Control Message Protocol) can be exploited by malicious people to cause a DoS (Denial of Service). Cisco has acknowledged that various Cisco products are affected.
The published Internet-Draft details three types of attacks, which utilize the following ICMP messages to cause a negative impact on TCP connections either terminating or originating from a vulnerable device.
1) ICMP "hard" error messages
2) ICMP "fragmentation needed and Don't Fragment (DF) bit set" messages (known as PMTUD attacks)
3) ICMP "source quench" messages
These attacks can all be exploited to cause TCP connection resets, reduce the throughput in existing TCP connections, or consume large amounts of CPU and memory resources.
Successful exploitation requires knowledge of IP address information of the source and destination of the TCP network connection..
NOTE: See the original advisory for a list of affected versions.
Change Page: [ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|