Cisco Reports Multiple Security Problems

KingFishKingFish
edited August 2004 in Science & Tech
Cisco over the past week has announced a series of vulnerabilities in multiple products. Most are denial-of-service issues, while two additional problems could allow improper authentication.
The advisory, "Cisco Telnet Denial of Service Vulnerability," describes a potential denial of new connections on a series of network services, specifically "telnet, reverse telnet, RSH [Remote Shell], SSH [Secure Shell], and in some cases HTTP [Hypertext Transport Protocol]" on devices running Cisco's IOS operating system. The condition is caused by a specially crafted TCP connection to the device using telnet or reverse telnet. Only new connections are affected. Existing communications over the affected protocols, as well as other services, are not affected. Secunia rates the vulnerability as "less critical." Cisco has not yet provided fixes or updated versions for this problem.
Source: eWeek
Sign In or Register to comment.