Cisco Catalyst 2900XL交换机服务拒绝漏洞

Cisco Catalyst 2900XL交换机服务拒绝漏洞

漏洞ID 1106327 漏洞类型 输入验证
发布时间 2001-05-03 更新时间 2001-08-14
图片[1]-Cisco Catalyst 2900XL交换机服务拒绝漏洞-安全小百科CVE编号 CVE-2001-0566
图片[2]-Cisco Catalyst 2900XL交换机服务拒绝漏洞-安全小百科CNNVD-ID CNNVD-200108-069
漏洞平台 Hardware CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/20824
https://www.securityfocus.com/bid/88841
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200108-069
|漏洞详情
CiscoCatalyst2900XL交换机存在漏洞。远程攻击者可以借助SNMP不可用时被发送到端口161(SNMP)的空UDP数据包创建服务拒绝。
|漏洞EXP
source: http://www.securityfocus.com/bid/2689/info

The Catalyst series switch is a scalable, high performance layers 2 and 3 switch manufactured by Cisco Systems. The Catalyst series ranges in size, and is designed for use in organizations sized from small business to large enterprise.

A problem with the switch firmware could allow a Denial of Service to legitimate users of network resources. Upon booting the switch with SNMP disabled, the service does not handle normal requests. However, by sending an empty UDP packet to the SNMP port, the switch ceases operating.

This problem makes it possible for a remote user to deny service to legitimate users of the switch.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/20824.tgz
|受影响的产品
Cisco Catalyst 2900 XL
|参考资料

来源:XF
名称:cisco-catalyst-udp-dos(6515)
链接:http://xforce.iss.net/static/6515.php
来源:BUGTRAQ
名称:20010503CiscoCatalyst2900XLcrasheswithemptyUDPpacketwhenSNMPisdisabled.
链接:http://archives.neohapsis.com/archives/bugtraq/2001-05/0040.html

相关推荐: Microsoft Windows Media Player Javascript URL Vulnerability

Microsoft Windows Media Player Javascript URL Vulnerability 漏洞ID 1103543 漏洞类型 Access Validation Error 发布时间 2001-01-01 更新时间 2001-01…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享