Multiple Vendor Router Denial of Service Vulnerability
BID:1855
Info
Multiple Vendor Router Denial of Service Vulnerability
| Bugtraq ID: | 1855 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jul 14 1999 12:00AM |
| Updated: | Jul 14 1999 12:00AM |
| Credit: | This vulnerability was reported to bugtraq by Exploits asckill.c and asckill.pl released by Rootshell <[email protected]> on 3/16/98 and 3/17/98 respectively. |
| Vulnerable: |
Ascend R 4.5 Ci12 |
| Not Vulnerable: | |
Discussion
Multiple Vendor Router Denial of Service Vulnerability
A vulnerability exists in the operating system of some Ascend routers. If an invalid TCP packet (of zero length) is sent to the administration port of Ascend Routers 4.5Ci12 or earlier, the result will be a crash and reboot of the attacked router, accomplishing a denial of service attack.
Note that 3Com is reportedly also vulnerable, but it is not verified which versions of IOS are exploitable.
A vulnerability exists in the operating system of some Ascend routers. If an invalid TCP packet (of zero length) is sent to the administration port of Ascend Routers 4.5Ci12 or earlier, the result will be a crash and reboot of the attacked router, accomplishing a denial of service attack.
Note that 3Com is reportedly also vulnerable, but it is not verified which versions of IOS are exploitable.
Exploit / POC
Multiple Vendor Router Denial of Service Vulnerability
Exploits asckill.c and asckill.pl released by Rootshell <[email protected]> on 3/16/98 and 3/17/98 respectively.
Exploits asckill.c and asckill.pl released by Rootshell <[email protected]> on 3/16/98 and 3/17/98 respectively.
Solution / Fix
Multiple Vendor Router Denial of Service Vulnerability
Solution:
Ascend released 5.0Ap46 on 3/20/98, correcting this vulnerability.
see ftp.ascend.com
Solution:
Ascend released 5.0Ap46 on 3/20/98, correcting this vulnerability.
see ftp.ascend.com