30th Jan 2002 [SBWID-5044]
COMMAND
Bad telnetd on Cisco Catalyst switches allows DoS
SYSTEMS AFFECTED
Catalyst 6000 series
Catalyst 5000 series
Catalyst 4000 series
Catalyst 2948G
Catalyst 2900
PROBLEM
From Cisco advisory regarding Cisco bug ID CSCdw19195,
[http://www.cisco.com/warp/public/707/catos-telrcv-vuln-pub.shtml] :
Some Cisco Catalyst switches, running certain CatOS based software
releases, have a vulnerability wherein a buffer overflow in the telnet
option handling can cause the telnet daemon to crash and result in a
switch reload.
SOLUTION
This vulnerability has been fixed in the following switch software
revisions and the fix will be carried forward in all future releases.
+-------------------------------------------------------------------------------+
| | Release 4 | Release 5 | Release 6 | Release 7 |
| | code base | code base | code base | code base |
|---------------+---------------+---------------+---------------+---------------|
| Catalyst 6000 | Not | 5.5(13) and | 6.3(4) and | 7.1(2) and |
| series | Applicable | later | later | later |
|---------------+---------------+---------------+---------------+---------------|
| Catalyst 5000 | 4.5(13a) | 5.5(13) and | 6.3(4) and | Not |
| series | | later | later | Applicable |
|---------------+---------------+---------------+---------------+---------------|
| Catalyst 4000 | Not Available | 5.5(13) and | 6.3(4) and | 7.1(2) and |
| series | | later | later | later |
+-------------------------------------------------------------------------------+
TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH
