Cisco Content Service Switch Management Port UDP Denial Of Service Vulnerability

Bugtraq ID:	9806
Class:	Design Error
CVE:	CVE-2004-0352
Remote:	Yes
Local:	No
Published:	Mar 04 2004 12:00AM
Updated:	Sep 01 2006 09:23PM
Credit:	Discovery credited to Timothy Arnold.
Vulnerable:	Cisco CSS11800 Content Services Switch Cisco CSS11150 Content Services Switch Cisco CSS11050 Content Services Switch Cisco CSS11000 Content Services Switch
Not Vulnerable:

Cisco Content Service Switch Management Port UDP Denial Of Service Vulnerability

A problem in the handling of some types of malformed UDP network traffic to the Cisco Content Service Switch management port may allow an attacker to deny service to legitimate users of vulnerable systems.

Cisco Content Service Switch Management Port UDP Denial Of Service Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

• /data/vulnerabilities/exploits/ciscoMultipleVulnsExploit.pl

Cisco Content Service Switch Management Port UDP Denial Of Service Vulnerability

Solution:
Cisco has released fixes for this issue:


Cisco CSS11050 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  http://www.cisco.com


• Cisco WebNS 06.10(02.05)S
  http://www.cisco.com

Cisco CSS11800 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  http://www.cisco.com


• Cisco WebNS 06.10(02.05)S
  http://www.cisco.com

Cisco CSS11150 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  http://www.cisco.com


• Cisco WebNS 06.10(02.05)S
  http://www.cisco.com

Cisco CSS11000 Content Services Switch

• Cisco WebNS 05.0(04.07)S
  http://www.cisco.com


• Cisco WebNS 06.10(02.05)S
  http://www.cisco.com

Cisco Content Service Switch Management Port UDP Denial Of Service Vulnerability

References:

• Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malfor (Cisco)