Cisco Content Service Switch管理端口UDP拒绝服务漏洞

漏洞信息详情

Cisco Content Service Switch管理端口UDP拒绝服务漏洞

• CNNVD编号：CNNVD-200411-063
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2004-0352
  
• 漏洞类型：
  
  
  设计错误
  
• 发布时间：
  
  2004-11-23
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  cisco
• 漏洞来源：
  Discovery credited…

Cisco 11000 Series Content Services Switches (CSS)运行WebNS 05.0(04.07)S以前的5.0(x)版本，以及06.10(02.05)S以前的6.10(x)版本时存在漏洞。远程攻击者可以借助一个到UDP端口5002的数据包导致服务拒绝。

Cisco has released fixes for this issue:
Cisco CSS11050 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  
  http://www.cisco.com
• Cisco WebNS 06.10(02.05)S
  
  http://www.cisco.com

Cisco CSS11800 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  
  http://www.cisco.com
• Cisco WebNS 06.10(02.05)S
  
  http://www.cisco.com

Cisco CSS11150 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  
  http://www.cisco.com
• Cisco WebNS 06.10(02.05)S
  
  http://www.cisco.com

Cisco CSS11000 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  
  http://www.cisco.com
• Cisco WebNS 06.10(02.05)S
  
  http://www.cisco.com

来源:US-CERT Vulnerability Note: VU#363374
名称: VU#363374
链接:http://www.kb.cert.org/vuls/id/363374

来源: BID
名称: 9806
链接:http://www.securityfocus.com/bid/9806

来源: CISCO
名称: 20040304 Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability
链接:http://www.cisco.com/warp/public/707/cisco-sa-20040304-css.shtml

来源: XF
名称: cisco-css-udp-dos(15388)
链接:http://xforce.iss.net/xforce/xfdb/15388