S-298: Cisco IOS Secure Shell Denial of Service Vulnerabilities

Tags

secure, security, service, shell

Special Forums Cybersecurity Security Advisories (RSS) S-298: Cisco IOS Secure Shell Denial of Service Vulnerabilities

05-22-2008

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

S-298: Cisco IOS Secure Shell Denial of Service Vulnerabilities

The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The risk is LOW. Successful exploitation of these vulnerabilities may result in a spurious memory access or, in certain cases, reload the device potentially resulting in a DoS condition.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. Solaris

Cisco IOS VPN server IKE

How do I tell if Cisco IOS VPN server IKE is running on my solaris 10 system

2. Shell Programming and Scripting

Need help on ssh login script to cisco ios

I'm trying to write a login script to ssh into a cisco switch that will run some command remotely. Similar to this expect script located here: SSH login expect shell script to supply username and password However, that script does not work with cisco ios. Anyway know what the best way to...

LEARN ABOUT SUSE

aggregate-ios

AGGREGATE-IOS(1)                                              General Commands Manual                                             AGGREGATE-IOS(1)

NAME

       aggregate-ios - optimise a concatenated set of cisco/IOS prefix filters to help make them nice and short.

SYNOPSIS

       aggregate-ios <source_config >optimised_config

DESCRIPTION

       Takes  cisco IOS configuration on stdin, and optimises any prefix filters found using aggregate(1).  Optimised filters are produced on std-
       out.

OPTIONS

       None.

DIAGNOSTICS

       Any diagnostics produced by aggregate(1) are passed through on stderr.

EXAMPLES

       The following configuration fragment:

         ip prefix-list AS65530 description Foo, Inc
         ip prefix-list AS65530 permit 10.1.0.0/16
         ip prefix-list AS65530 permit 10.2.0.0/16
         ip prefix-list AS65530 permit 10.2.1.0/24
         ip prefix-list AS65530 permit 10.3.0.0/16
         ip prefix-list AS65531 description Bar.Com
         ip prefix-list AS65531 seq 5 permit 192.168.1.0/24
         ip prefix-list AS65531 seq 10 permit 192.168.2.0/24
         ip prefix-list AS65531 seq 15 permit 192.168.0.0/19

       is optimised as follows:

         ip prefix-list AS65530 permit 10.1.0.0/16 le 24
         ip prefix-list AS65530 permit 10.2.0.0/15 le 24
         ip prefix-list AS65531 permit 192.168.0.0/19 le 24

SEE ALSO

       aggregate(1)

HISTORY

       Aggregate-ios was written by Joe Abley <jabley@mfnx.net>.

BUGS

       All those in aggregate(1) and then some :)

Joe Abley                                                        2000 November 27                                                 AGGREGATE-IOS(1)

Security Advisories (RSS)