首页 -> 安全研究
安全研究
安全漏洞
Cisco Catalyst非标准TCP标记远程拒绝服务漏洞
发布日期:2003-07-09
更新日期:2003-07-15
受影响系统:
Cisco Catalyst 4000 6.3.5不受影响系统:
Cisco Catalyst 4000 6.1(1c)
Cisco Catalyst 4000 6.1(1b)
Cisco Catalyst 4000 6.1(1a)
Cisco Catalyst 4000 6.1(1)
Cisco Catalyst 4000 5.5.5
Cisco Catalyst 4000 5.5(4b)
Cisco Catalyst 4000 5.5(4)
Cisco Catalyst 4000 5.5(3)
Cisco Catalyst 4000 5.5(2)
Cisco Catalyst 4000 5.5(1)
Cisco Catalyst 4000 5.5
Cisco Catalyst 4000 5.4.1
Cisco Catalyst 4000 5.4(3)
Cisco Catalyst 4000 5.4(2)
Cisco Catalyst 4000 5.4(1)
Cisco Catalyst 4000 5.4
Cisco Catalyst 4000 5.2(7)
Cisco Catalyst 4000 5.2(6)
Cisco Catalyst 4000 5.2(5)
Cisco Catalyst 4000 5.2(4)
Cisco Catalyst 4000 5.2(2)
Cisco Catalyst 4000 5.2(1a)
Cisco Catalyst 4000 5.2(1)
Cisco Catalyst 4000 5.2
Cisco Catalyst 4000 5.1(2a)
Cisco Catalyst 4000 5.1(1a)
Cisco Catalyst 4000 5.1(1)
Cisco Catalyst 4000 5.1
Cisco Catalyst 4000 4.5(9)
Cisco Catalyst 4000 4.5(8)
Cisco Catalyst 4000 4.5(7)
Cisco Catalyst 4000 4.5(6)
Cisco Catalyst 4000 4.5(5)
Cisco Catalyst 4000 4.5(4b)
Cisco Catalyst 4000 4.5(4)
Cisco Catalyst 4000 4.5(3)
Cisco Catalyst 4000 4.5(2)
Cisco Catalyst 4000 4.5(10)
Cisco Catalyst 5000 6.1(3)
Cisco Catalyst 5000 6.1(2)
Cisco Catalyst 5000 6.1(1c)
Cisco Catalyst 5000 6.1(1b)
Cisco Catalyst 5000 6.1(1a)
Cisco Catalyst 5000 6.1(1)
Cisco Catalyst 5000 5.5(7)
Cisco Catalyst 5000 5.5(6)
Cisco Catalyst 5000 5.5(4b)
Cisco Catalyst 5000 5.5(4)
Cisco Catalyst 5000 5.5(3)
Cisco Catalyst 5000 5.5(2)
Cisco Catalyst 5000 5.5(1)
Cisco Catalyst 5000 5.4.1
Cisco Catalyst 5000 5.4(4)
Cisco Catalyst 5000 5.4(3)
Cisco Catalyst 5000 5.4(2)
Cisco Catalyst 5000 5.4(1)
Cisco Catalyst 5000 5.2(4)
Cisco Catalyst 5000 5.2(3)
Cisco Catalyst 5000 5.2(2)
Cisco Catalyst 5000 5.2(1)
Cisco Catalyst 5000 5.2
Cisco Catalyst 5000 5.1(2a)
Cisco Catalyst 5000 5.1(1)
Cisco Catalyst 5000 5.1
Cisco Catalyst 5000 4.5(9)
Cisco Catalyst 5000 4.5(8)
Cisco Catalyst 5000 4.5(7)
Cisco Catalyst 5000 4.5(6)
Cisco Catalyst 5000 4.5(5)
Cisco Catalyst 5000 4.5(4b)
Cisco Catalyst 5000 4.5(4)
Cisco Catalyst 5000 4.5(3)
Cisco Catalyst 5000 4.5(2)
Cisco Catalyst 5000 4.5(12)
Cisco Catalyst 5000 4.5(11)
Cisco Catalyst 5000 4.5(10)
Cisco Catalyst 6000 7.6(1)
Cisco Catalyst 6000 7.5(1)
Cisco Catalyst 6000 7.1(2)
Cisco Catalyst 6000 7.1
Cisco Catalyst 6000 6.3(4)
Cisco Catalyst 6000 6.3(0.7)PAN
Cisco Catalyst 6000 6.2(0.111)
Cisco Catalyst 6000 6.2(0.110)
Cisco Catalyst 6000 6.1(2.13)
Cisco Catalyst 6000 6.1(1c)
Cisco Catalyst 6000 6.1(1b)
Cisco Catalyst 6000 6.1(1a)
Cisco Catalyst 6000 6.1(1)
Cisco Catalyst 6000 5.5(4b)
Cisco Catalyst 6000 5.5(4a)
Cisco Catalyst 6000 5.5(4)
Cisco Catalyst 6000 5.5(3)
Cisco Catalyst 6000 5.5(2)
Cisco Catalyst 6000 5.5(1)
Cisco Catalyst 6000 5.5
Cisco Catalyst 6000 5.4.1
Cisco Catalyst 6000 5.4(4)
Cisco Catalyst 6000 5.4(3)
Cisco Catalyst 6000 5.4(2)
Cisco Catalyst 6000 5.4(1)
Cisco Catalyst 6000 5.4
Cisco Catalyst 6000 5.3(6)CSX
Cisco Catalyst 6000 5.3(5a)CSX
Cisco Catalyst 6000 5.3(5)CSX
Cisco Catalyst 6000 5.3(4)CSX
Cisco Catalyst 6000 5.3(3)CSX
Cisco Catalyst 6000 5.3(2)CSX
Cisco Catalyst 6000 5.3(1a)CSX
Cisco Catalyst 6000 5.3(1)CSX
Cisco CatOS 7.6 (1)
Cisco CatOS 7.5 (1)
Cisco CatOS 7.4 (0.63)
Cisco CatOS 7.4
Cisco CatOS 7.3 (2)
Cisco CatOS 7.3 (1)
Cisco CatOS 7.3
Cisco CatOS 7.2 (2)
Cisco CatOS 7.2 (1)
Cisco CatOS 7.1 (2a)
Cisco CatOS 7.1 (2)
Cisco CatOS 7.1 (1a)
Cisco CatOS 7.1 (1)
Cisco CatOS 6.3 (9)
Cisco CatOS 6.3 (8.3)
Cisco CatOS 6.3 (8)
Cisco CatOS 6.3 (7)
Cisco CatOS 6.3 (6)
Cisco CatOS 6.3 (5)
Cisco CatOS 6.3 (4a)
Cisco CatOS 6.3 (4)
Cisco CatOS 6.3 (3a)
Cisco CatOS 6.3 (3)x1
Cisco CatOS 6.3 (3)x
Cisco CatOS 6.3 (3)
Cisco CatOS 6.3 (2a)
Cisco CatOS 6.3 (2)
Cisco CatOS 6.3 (1a)
Cisco CatOS 6.3 (1)
Cisco CatOS 6.2 (3a)
Cisco CatOS 6.2 (3)
Cisco CatOS 6.2 (2a)
Cisco CatOS 6.2 (2)
Cisco CatOS 6.2 (1a)
Cisco CatOS 6.2 (1)
Cisco CatOS 6.1 (4b)
Cisco CatOS 6.1 (4)
Cisco CatOS 6.1 (3a)
Cisco CatOS 6.1 (3)
Cisco CatOS 6.1 (2a)
Cisco CatOS 6.1 (2)
Cisco CatOS 6.1 (1e)
Cisco CatOS 6.1 (1d)
Cisco CatOS 6.1 (1c)
Cisco CatOS 6.1 (1b)
Cisco CatOS 6.1 (1a)
Cisco CatOS 6.1 (1)
Cisco CatOS 6.1
Cisco CatOS 5.5 (9)
Cisco CatOS 5.5 (8a)CV
Cisco CatOS 5.5 (8a)
Cisco CatOS 5.5 (8)
Cisco CatOS 5.5 (7a)
Cisco CatOS 5.5 (7)
Cisco CatOS 5.5 (6a)
Cisco CatOS 5.5 (6)
Cisco CatOS 5.5 (5)
Cisco CatOS 5.5 (4b)
Cisco CatOS 5.5 (4a)
Cisco CatOS 5.5 (4)
Cisco CatOS 5.5 (3)
Cisco CatOS 5.5 (2)
Cisco CatOS 5.5 (1a)
Cisco CatOS 5.5 (13a)
Cisco CatOS 5.5 (13)
Cisco CatOS 5.5 (12a)
Cisco CatOS 5.5 (12)
Cisco CatOS 5.5 (11a)
Cisco CatOS 5.5 (11)
Cisco CatOS 5.5 (10a)
Cisco CatOS 5.5 (10)
Cisco CatOS 5.5 (1)
Cisco CatOS 5.5
Cisco CatOS 5.4 (4a)
Cisco CatOS 5.4 (4)
Cisco CatOS 5.4 (3)
Cisco CatOS 5.4 (2a)
Cisco CatOS 5.4 (2)
Cisco CatOS 5.4 (1) - deferred
Cisco CatOS 5.4 (1)
Cisco CatOS 5.4
Cisco CatOS 5.3 (6a)CSX
Cisco CatOS 5.3 (6)CSX
Cisco CatOS 5.3 (5a)CSX
Cisco CatOS 5.3 (5)CSX
Cisco CatOS 5.3 (4)CSX
Cisco CatOS 5.3 (3)CSX
Cisco CatOS 5.3 (2)CSX
Cisco CatOS 5.3 (1a)CSX
Cisco CatOS 5.2 (7a)
Cisco CatOS 5.2 (7)
Cisco CatOS 5.2 (6)
Cisco CatOS 5.2 (5)
Cisco CatOS 5.2 (4)
Cisco CatOS 5.2 (3a)CSX
Cisco CatOS 5.2 (3)CSX
Cisco CatOS 5.2 (3)
Cisco CatOS 5.2 (2)CSX
Cisco CatOS 5.2 (2)
Cisco CatOS 5.2 (1)CSX
Cisco CatOS 5.2 (1)
Cisco CatOS 5.1 (2b)
Cisco CatOS 5.1 (2a)
Cisco CatOS 5.1 (1a)CSX
Cisco CatOS 5.1 (1a)
Cisco CatOS 5.1 (1)CSX
Cisco CatOS 5.1 (1)
Cisco CatOS 4.5 (9)
Cisco CatOS 4.5 (8)
Cisco CatOS 4.5 (7)
Cisco CatOS 4.5 (6a)
Cisco CatOS 4.5 (6)
Cisco CatOS 4.5 (5)
Cisco CatOS 4.5 (4)
Cisco CatOS 4.5 (3)
Cisco CatOS 4.5 (2)
Cisco CatOS 4.5 (13a)
Cisco CatOS 4.5 (13)
Cisco CatOS 4.5 (12a)
Cisco CatOS 4.5 (12)
Cisco CatOS 4.5 (11)
Cisco CatOS 4.5 (10)
Cisco CatOS 4.5 (1)
Cisco CatOS 4.4 (1)
Cisco CatOS 4.3 (1a)
Cisco CatOS 4.2 (2)
Cisco CatOS 4.2 (1)
Cisco CatOS 4.1 (3)
Cisco CatOS 4.1 (2)
Cisco CatOS 4.1 (1)
Cisco CatOS 3.2 (8) - GDR
Cisco CatOS 3.2 (7)
Cisco CatOS 3.2 (6)
Cisco CatOS 3.2 (5)
Cisco CatOS 3.2 (4)
Cisco CatOS 3.2 (3)
Cisco CatOS 3.2 (2)
Cisco CatOS 3.2 (1b)
Cisco CatOS 3.2 (1)
Cisco CatOS 3.1 (2a)
Cisco CatOS 3.1 (2)
Cisco CatOS 3.1 (1)
Cisco CatOS 2.4 (5a)
Cisco CatOS 2.4 (5)
Cisco CatOS 2.4 (4)
Cisco CatOS 2.4 (3)
Cisco CatOS 2.4 (2)
Cisco CatOS 2.4 (1)
Cisco CatOS 2.3 (1)
Cisco CatOS 2.2 (2)
Cisco CatOS 2.2 (1)
Cisco CatOS 2.1 (9)
Cisco CatOS 2.1 (8)
Cisco CatOS 2.1 (7)
Cisco CatOS 2.1 (6)
Cisco CatOS 2.1 (5)
Cisco CatOS 2.1 (4)
Cisco CatOS 2.1 (3)
Cisco CatOS 2.1 (2)
Cisco CatOS 2.1 (12)
Cisco CatOS 2.1 (11)
Cisco CatOS 2.1 (10)
Cisco CatOS 2.1 (1)
Cisco CatOS 7.4 (1)描述:
Cisco CatOS 7.4 (0.2)CLR
Cisco CatOS 7.2 (1)
Cisco CatOS 7.2 (0.65)
Cisco CatOS 6.3 (6)
Cisco CatOS 6.3 (5.10)
Cisco CatOS 5.5 (14)
Cisco CatOS 5.5 (13.5)
BUGTRAQ ID: 8149
Cisco Catalyst是一系列由CISCO公司分发和维护的商业级别交换机。
Cisco Catalyst没有正确处理非标准TCP包通信,远程攻击者可以利用这个漏洞对交换机设备进行拒绝服务攻击,造成合法用户不能使进行正常通信。
在介绍到8个使用非标准TCP标记组合的TCP连接,Catalyst交换机将会停止部分服务的正常TCP响应。要重新使用此服务的功能,需要交换机重新启动。这些标准服务包括HTTP、Telnet、SSH其他服务不受此漏洞影响,包括控制台通信。
此Cisco Bug ID为:CSCdw52219
<*来源:Cisco Security Advisory
链接:http://www.cisco.com/warp/public/707/cisco-sa-20030709-swtcp.shtml
*>
建议:
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(cisco-sa-20030709-swtcp)以及相应补丁:
cisco-sa-20030709-swtcp:Denial-of-Service of TCP-based Services in CatOS
链接:http://www.cisco.com/warp/public/707/cisco-sa-20030709-swtcp.shtml
下面版本不受此版本影响,用户可以联系供应商获得相关的解决方案和补丁:
Cisco CatOS 5.5 (14)
Cisco CatOS 5.5 (13.5)
Cisco CatOS 6.3 (6)
Cisco CatOS 6.3 (5.10)
Cisco CatOS 7.2 (1)
Cisco CatOS 7.2 (0.65)
Cisco CatOS 7.4 (1)
Cisco CatOS 7.4 (0.2)CLR
Cisco为所有受影响客户提供免费的软件升级来修正这些漏洞,客户只能获得和安装他们所购买的功能类别相关的技术支持。通过安装,下载,访问或使用这些软件升级,客户必须同意CISCO软件许可条例中的条例:
http://www.cisco.com/public/sw-license-agreement.html
或由Cisco连接在线软件中心的声明:
http://www.cisco.com/public/sw-center/sw-usingswc.shtm.
拥有服务合同的客户必须连接他们常规升级渠道获得由此公告指定的免费升级软件。对于大多数拥有服务合同的客户,这意味着升级必须通过CISCO全球WEB站软件中心获得:
http://www.cisco.com/tacpage/sw-center/.
要访问此下载URL,你必须是注册用户和必须登录后才能使用。
事先或目前与第三方支持组织,如Cisco合作伙伴、授权零售商或服务商之间已有协议,由第三方组织提供Cisco产品或技术支持的用户可免费获得升级支持。
直接从Cisco购买产品但没有Cisco服务合同的用户和由第三方厂商购买产品但无法从销售方获得已修复软件的用户可从Cisco技术支持中心(TAC)获取升级软件。TAC联系方法:
* +1 800 553 2447 (北美地区免话费)
* +1 408 526 7209 (全球收费)
* e-mail: tac@cisco.com
查看 http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml 获取额外的TAC联系信息,包括特别局部的电话号码,各种语言的指南和EMAIL地址。
浏览次数:2905
严重程度:0(网友投票)
绿盟科技给您安全的保障