Alcatel OmniSwitch 7000 Series Security Scan Denial Of Service Vulnerability
BID:9745
Info
Alcatel OmniSwitch 7000 Series Security Scan Denial Of Service Vulnerability
| Bugtraq ID: | 9745 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 25 2004 12:00AM |
| Updated: | Feb 25 2004 12:00AM |
| Credit: | Discovery of this vulnerability has been credited to Michael Shekman <[email protected]>. |
| Vulnerable: |
Alcatel-Lucent OmniSwitch 7800 0 Alcatel-Lucent OmniSwitch 7700 0 |
| Not Vulnerable: | |
Discussion
Alcatel OmniSwitch 7000 Series Security Scan Denial Of Service Vulnerability
A vulnerability has been reported in the handling of specific types of network traffic by OmniSwitch 7000 series systems. Because of this, an attacker may be able to deny service to legitimate users of a vulnerable switch.
The problem is in the handling of scans by third-party security software. It has been reported that as a result of such scans, the switch reportedly reboots, impacting performance. In some circumstances the attack may result in a denial of service to the switched network.
A vulnerability has been reported in the handling of specific types of network traffic by OmniSwitch 7000 series systems. Because of this, an attacker may be able to deny service to legitimate users of a vulnerable switch.
The problem is in the handling of scans by third-party security software. It has been reported that as a result of such scans, the switch reportedly reboots, impacting performance. In some circumstances the attack may result in a denial of service to the switched network.
Exploit / POC
Alcatel OmniSwitch 7000 Series Security Scan Denial Of Service Vulnerability
This issue can be exploited using Nessus 2.0.9.
This issue can be exploited using Nessus 2.0.9.
Solution / Fix
Alcatel OmniSwitch 7000 Series Security Scan Denial Of Service Vulnerability
Solution:
The vendor has acknowledged this vulnerability and released fixes to address this issue. Please contact the vendor to obtain fixes and more information.
Solution:
The vendor has acknowledged this vulnerability and released fixes to address this issue. Please contact the vendor to obtain fixes and more information.
References
Alcatel OmniSwitch 7000 Series Security Scan Denial Of Service Vulnerability
References:
References:
- OmniSwitch 7000 Series Homepage (Alcatel)
- Alcatel Omniswitch 7000 series (Michael Shekman