SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#162451

Cisco IOS fails to properly process solicited SNMP operations

Overview

Cisco IOS contains a vulnerability in the processing of solicited Simple Network Management Protocol (SNMP) operations that may result in memory corruption of the device causing it to reload. Sustained exploitation of this vulnerability could lead to a denial of service condition affect a large segment of the Internet community.

I. Description

The SNMP protocol enables network and system administrators to remotely monitor and configure devices on the network (devices such as switches and routers). There is a vulnerability in way Cisco IOS processes solicited SNMP operations. Sustained exploitation of this vulnerability could lead to a denial of service condition affecting large portions of the Internet community.

For more information, please refer to Cisco Security Advisory: "Vulnerabilities in SNMP Message Processing".

II. Impact

A remote, unauthenticated attacker could cause the vulnerable device to reload. Repeated exploitation of this vulnerability could lead to a sustained denial of service condition.

III. Solution

Upgrade


Cisco has published detailed information about upgrading affected Cisco IOS software to correct this vulnerability. System managers are encouraged to upgrade to one of the non-vulnerable releases. For additional information regarding availability of repaired releases, please refer to the "Software Versions and Fixes" section of the Cisco Security Advisory.

Workarounds

Cisco recommends a number of workarounds, including disabling SNMP processing on affected devices. For a complete list of workarounds, see the Cisco Security Advisory.

Systems Affected

VendorStatusDate NotifiedDate Updated
Cisco Systems Inc.Vulnerable20-Apr-2004

References


http://www.cisco.com/warp/public/707/cisco-sa-20040420-snmp.shtml
http://www.ietf.org/rfc/rfc1157.txt

Credit

Thanks to Cisco for reporting this vulnerability.

This document was written by Jeff S Havrilla.

Other Information

Date Public:2004-04-20
Date First Published:2004-04-20
Date Last Updated:2004-04-20
CERT Advisory: 
CVE-ID(s): 
NVD-ID(s): 
US-CERT Technical Alerts: 
Metric:90.97
Document Revision:19

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2004 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader