Cisco ONS devices UDP packet denial of service

cisco-ons-udp-dos (16764) The risk level is classified as MediumMedium Risk

Description:

Multiple Cisco ONS devices are vulnerable to a denial of service attack. By sending a specially-crafted UDP packet, a remote attacker could cause the cause the XTC, TCC/TCC+/TCC2, TCCi/TCC2, and TSC control cards to reset.

Note: Cisco ONS15600 multiservice switching hardware devices running Cisco ONS software version 1.x(x) do not experience an impact in traffic, however, manageability functions are affected by this vulnerability.


Consequences:

Denial of Service

Remedy:

Refer to Cisco Systems Inc. Security Advisory, 2004 July 21 at 1600 UTC (GMT) for workaround information or information on obtaining a software upgrade. See References.

References:

  • cisco-sa-20040721-ons: Cisco Security Advisory: Cisco ONS 15327, ONS 15454, ONS 15454 SDH, and ONS 15600 Malformed Packet Vulnerabilities.
  • BID-10768: Cisco ONS Multiple Vulnerabilities
  • CVE-2004-1433: Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5(x), 4.1(0) to 4.1(3), 4.0(0) to 4.0(2), and earlier versions, and ONS 15600 1.x(x), allows remote attackers to cause a denial of service (control card reset) via malformed (1) TCP and (2) UDP packets.
  • SA12117: Cisco ONS 15000 Multiple Denial of Service Vulnerabilities
  • US-CERT VU#486224: Multiple Cisco ONS control cards fail to properly handle malformed UDP packets
  • US-CERT VU#800384: Multiple Cisco ONS control cards fail to properly handle malformed TCP packets

Platforms Affected:

  • Cisco ONS 15327 3.0
  • Cisco ONS 15327 3.1
  • Cisco ONS 15327 3.2
  • Cisco ONS 15327 3.3
  • Cisco ONS 15327 3.4
  • Cisco ONS 15327 4.0
  • Cisco ONS 15327 4.0(1)
  • Cisco ONS 15327 4.0(2)
  • Cisco ONS 15327 4.1(0)
  • Cisco ONS 15327 4.1(1)
  • Cisco ONS 15327 4.1(2)
  • Cisco ONS 15327 4.1(3)
  • Cisco ONS 15327 4.6(0)
  • Cisco ONS 15327 4.6(1)
  • Cisco ONS 15454 Optical Transport Platform 2.3(5)
  • Cisco ONS 15454 Optical Transport Platform 3.0
  • Cisco ONS 15454 Optical Transport Platform 3.1.0
  • Cisco ONS 15454 Optical Transport Platform 3.2.0
  • Cisco ONS 15454 Optical Transport Platform 3.3
  • Cisco ONS 15454 Optical Transport Platform 3.4
  • Cisco ONS 15454 Optical Transport Platform 4.0
  • Cisco ONS 15454 Optical Transport Platform 4.0(1)
  • Cisco ONS 15454 Optical Transport Platform 4.0(2)
  • Cisco ONS 15454 Optical Transport Platform 4.1(0)
  • Cisco ONS 15454 Optical Transport Platform 4.1(1)
  • Cisco ONS 15454 Optical Transport Platform 4.1(2)
  • Cisco ONS 15454 Optical Transport Platform 4.1(3)
  • Cisco ONS 15454 Optical Transport Platform 4.5
  • Cisco ONS 15454 Optical Transport Platform 4.6(0)
  • Cisco ONS 15454 Optical Transport Platform 4.6(1)
  • Cisco ONS 15454SDH 2.3(5)
  • Cisco ONS 15454SDH 3.1
  • Cisco ONS 15454SDH 3.2
  • Cisco ONS 15454SDH 3.3
  • Cisco ONS 15454SDH 3.4
  • Cisco ONS 15454SDH 4.0(0)
  • Cisco ONS 15454SDH 4.0(1)
  • Cisco ONS 15454SDH 4.0(2)
  • Cisco ONS 15454SDH 4.1(0)
  • Cisco ONS 15454SDH 4.1(1)
  • Cisco ONS 15454SDH 4.1(2)
  • Cisco ONS 15454SDH 4.1(3)
  • Cisco ONS 15454SDH 4.5
  • Cisco ONS 15454SDH 4.6(0)
  • Cisco ONS 15454SDH 4.6(1)
  • Cisco ONS 15600 1.0
  • Cisco ONS 15600 1.1
  • Cisco ONS 15600 1.1(0)
  • Cisco ONS 15600 1.1(1)
  • Cisco ONS 15600 1.3(0)

Reported:

Jul 21, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page