Vulnerability Note VU#162451
Cisco IOS fails to properly process solicited SNMP operations
Cisco IOS contains a vulnerability in the processing of solicited Simple Network Management Protocol (SNMP) operations that may result in memory corruption of the device causing it to reload. Sustained exploitation of this vulnerability could lead to a denial of service condition affect a large segment of the Internet community.
The SNMP protocol enables network and system administrators to remotely monitor and configure devices on the network (devices such as switches and routers). There is a vulnerability in way Cisco IOS processes solicited SNMP operations. Sustained exploitation of this vulnerability could lead to a denial of service condition affecting large portions of the Internet community.
For more information, please refer to Cisco Security Advisory: "Vulnerabilities in SNMP Message Processing".
A remote, unauthenticated attacker could cause the vulnerable device to reload. Repeated exploitation of this vulnerability could lead to a sustained denial of service condition.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Cisco Systems Inc.||Affected||-||20 Apr 2004|
CVSS Metrics (Learn More)
Thanks to Cisco for reporting this vulnerability.
This document was written by Jeff S Havrilla.
- CVE IDs: Unknown
- Date Public: 20 Apr 2004
- Date First Published: 20 Apr 2004
- Date Last Updated: 20 Apr 2004
- Severity Metric: 90.97
- Document Revision: 19
If you have feedback, comments, or additional information about this vulnerability, please send us email.