安全研究
安全漏洞
Cisco CatOS TCP-ACK远程拒绝服务漏洞
发布日期:2004-06-09
更新日期:2004-06-14
受影响系统:
Cisco Catalyst 6000 7.6 (1)不受影响系统:
Cisco Catalyst 6000 7.5 (1)
Cisco Catalyst 6000 7.1 (2)
Cisco Catalyst 6000 7.1
Cisco Catalyst 6000 6.3 (4)
Cisco Catalyst 6000 6.3 (0.7)PAN
Cisco Catalyst 6000 6.2 (0.111)
Cisco Catalyst 6000 6.2 (0.110)
Cisco Catalyst 6000 6.1 (2.13)
Cisco Catalyst 6000 6.1 (1c)
Cisco Catalyst 6000 6.1 (1b)
Cisco Catalyst 6000 6.1 (1a)
Cisco Catalyst 6000 6.1 (1)
Cisco Catalyst 6000 5.5 (4b)
Cisco Catalyst 6000 5.5 (4a)
Cisco Catalyst 6000 5.5 (4)
Cisco Catalyst 6000 5.5 (3)
Cisco Catalyst 6000 5.5 (2)
Cisco Catalyst 6000 5.5 (13)
Cisco Catalyst 6000 5.5 (1)
Cisco Catalyst 6000 5.5
Cisco Catalyst 6000 5.4.1
Cisco Catalyst 6000 5.4 (4)
Cisco Catalyst 6000 5.4 (3)
Cisco Catalyst 6000 5.4 (2)
Cisco Catalyst 6000 5.4 (1)
Cisco Catalyst 6000 5.4
Cisco Catalyst 6000 5.3 (6)CSX
Cisco Catalyst 6000 5.3 (5a)CSX
Cisco Catalyst 6000 5.3 (5)CSX
Cisco Catalyst 6000 5.3 (4)CSX
Cisco Catalyst 6000 5.3 (3)CSX
Cisco Catalyst 6000 5.3 (2)CSX
Cisco Catalyst 6000 5.3 (1a)CSX
Cisco Catalyst 6000 5.3 (1)CSX
Cisco Catalyst 6000 3.1 (1a)WS-X6380-NAM
Cisco Catalyst 6000 3.1 (1a)WS-SVC-NAM-2
Cisco Catalyst 6000 3.1 (1a)WS-SVC-NAM-1
Cisco Catalyst 6000 2.2 (1a)WS-SVC-NAM-2
Cisco Catalyst 6000 2.2 (1a)WS-SVC-NAM-1
Cisco Catalyst 6000 2.1 (2)WS-X6380-NAM
Cisco Catalyst 5000 6.3 (4)
Cisco Catalyst 5000 6.1 (3)
Cisco Catalyst 5000 6.1 (2)
Cisco Catalyst 5000 6.1 (1c)
Cisco Catalyst 5000 6.1 (1b)
Cisco Catalyst 5000 6.1 (1a)
Cisco Catalyst 5000 6.1 (1)
Cisco Catalyst 5000 5.5 (7)
Cisco Catalyst 5000 5.5 (6)
Cisco Catalyst 5000 5.5 (4b)
Cisco Catalyst 5000 5.5 (4)
Cisco Catalyst 5000 5.5 (3)
Cisco Catalyst 5000 5.5 (2)
Cisco Catalyst 5000 5.5 (13)
Cisco Catalyst 5000 5.5 (1)
Cisco Catalyst 5000 5.4.1
Cisco Catalyst 5000 5.4 (4)
Cisco Catalyst 5000 5.4 (3)
Cisco Catalyst 5000 5.4 (2)
Cisco Catalyst 5000 5.4 (1)
Cisco Catalyst 5000 5.2 (4)
Cisco Catalyst 5000 5.2 (3)
Cisco Catalyst 5000 5.2 (2)
Cisco Catalyst 5000 5.2 (1)
Cisco Catalyst 5000 5.2
Cisco Catalyst 5000 5.1 (2a)
Cisco Catalyst 5000 5.1 (1)
Cisco Catalyst 5000 5.1
Cisco Catalyst 5000 4.5 (9)
Cisco Catalyst 5000 4.5 (8)
Cisco Catalyst 5000 4.5 (7)
Cisco Catalyst 5000 4.5 (6)
Cisco Catalyst 5000 4.5 (5)
Cisco Catalyst 5000 4.5 (4b)
Cisco Catalyst 5000 4.5 (4)
Cisco Catalyst 5000 4.5 (3)
Cisco Catalyst 5000 4.5 (2)
Cisco Catalyst 5000 4.5 (13a)
Cisco Catalyst 5000 4.5 (12)
Cisco Catalyst 5000 4.5 (11)
Cisco Catalyst 5000 4.5 (10)
Cisco Catalyst 5000
Cisco Catalyst 4912G
Cisco Catalyst 4510R
Cisco Catalyst 4507R
Cisco Catalyst 4506
Cisco Catalyst 4503
Cisco Catalyst 4500
Cisco Catalyst 4000 7.6 (1)
Cisco Catalyst 4000 7.5 (1)
Cisco Catalyst 4000 7.1.2
Cisco Catalyst 4000 7.1 (2)
Cisco Catalyst 4000 7.1
Cisco Catalyst 4000 6.3.5
Cisco Catalyst 4000 6.3 (4)
Cisco Catalyst 4000 6.1 (1c)
Cisco Catalyst 4000 6.1 (1b)
Cisco Catalyst 4000 6.1 (1a)
Cisco Catalyst 4000 6.1 (1)
Cisco Catalyst 4000 5.5.5
Cisco Catalyst 4000 5.5 (4b)
Cisco Catalyst 4000 5.5 (4)
Cisco Catalyst 4000 5.5 (3)
Cisco Catalyst 4000 5.5 (2)
Cisco Catalyst 4000 5.5 (13)
Cisco Catalyst 4000 5.5 (1)
Cisco Catalyst 4000 5.5
Cisco Catalyst 4000 5.4.1
Cisco Catalyst 4000 5.4 (3)
Cisco Catalyst 4000 5.4 (2)
Cisco Catalyst 4000 5.4 (1)
Cisco Catalyst 4000 5.4
Cisco Catalyst 4000 5.2 (7)
Cisco Catalyst 4000 5.2 (6)
Cisco Catalyst 4000 5.2 (5)
Cisco Catalyst 4000 5.2 (4)
Cisco Catalyst 4000 5.2 (2)
Cisco Catalyst 4000 5.2 (1a)
Cisco Catalyst 4000 5.2 (1)
Cisco Catalyst 4000 5.2
Cisco Catalyst 4000 5.1 (2a)
Cisco Catalyst 4000 5.1 (1a)
Cisco Catalyst 4000 5.1 (1)
Cisco Catalyst 4000 5.1
Cisco Catalyst 4000 4.5 (9)
Cisco Catalyst 4000 4.5 (8)
Cisco Catalyst 4000 4.5 (7)
Cisco Catalyst 4000 4.5 (6)
Cisco Catalyst 4000 4.5 (5)
Cisco Catalyst 4000 4.5 (4b)
Cisco Catalyst 4000 4.5 (4)
Cisco Catalyst 4000 4.5 (3)
Cisco Catalyst 4000 4.5 (2)
Cisco Catalyst 4000 4.5 (10)
Cisco Catalyst 4000
Cisco Catalyst 2980G-A
Cisco Catalyst 2980G
Cisco Catalyst 2948G-l3
Cisco Catalyst 2948G-GE-TX
Cisco Catalyst 2948G
Cisco Catalyst 2948
Cisco Catalyst 2926T
Cisco Catalyst 2926GS
Cisco Catalyst 2926GL
Cisco Catalyst 2926F
Cisco Catalyst 2926
Cisco Catalyst 2902
Cisco Catalyst 2901
Cisco CatOS 7.6 (1)
Cisco CatOS 7.5 (1)
Cisco CatOS 7.4 (1)
Cisco CatOS 7.4 (0.63)
Cisco CatOS 7.4 (0.2)CLR
Cisco CatOS 7.4
Cisco CatOS 7.3 (2)
Cisco CatOS 7.3 (1)
Cisco CatOS 7.3
Cisco CatOS 7.2 (2)
Cisco CatOS 7.2 (1)
Cisco CatOS 7.2 (1)
Cisco CatOS 7.2 (0.65)
Cisco CatOS 7.1 (2a)
Cisco CatOS 7.1 (2)
Cisco CatOS 7.1 (1a)
Cisco CatOS 7.1 (1)
Cisco CatOS 6.3 (9)
Cisco CatOS 6.3 (8.3)
Cisco CatOS 6.3 (8)
Cisco CatOS 6.3 (7)
Cisco CatOS 6.3 (6)
Cisco CatOS 6.3 (6)
Cisco CatOS 6.3 (5.10)
Cisco CatOS 6.3 (5)
Cisco CatOS 6.3 (4a)
Cisco CatOS 6.3 (4)
Cisco CatOS 6.3 (3a)
Cisco CatOS 6.3 (3)x1
Cisco CatOS 6.3 (3)x
Cisco CatOS 6.3 (3)
Cisco CatOS 6.3 (2a)
Cisco CatOS 6.3 (2)
Cisco CatOS 6.3 (1a)
Cisco CatOS 6.3 (1)
Cisco CatOS 6.2 (3a)
Cisco CatOS 6.2 (3)
Cisco CatOS 6.2 (2a)
Cisco CatOS 6.2 (2)
Cisco CatOS 6.2 (1a)
Cisco CatOS 6.2 (1)
Cisco CatOS 6.1 (4b)
Cisco CatOS 6.1 (4)
Cisco CatOS 6.1 (3a)
Cisco CatOS 6.1 (3)
Cisco CatOS 6.1 (2a)
Cisco CatOS 6.1 (2)
Cisco CatOS 6.1 (1e)
Cisco CatOS 6.1 (1d)
Cisco CatOS 6.1 (1c)
Cisco CatOS 6.1 (1b)
Cisco CatOS 6.1 (1a)
Cisco CatOS 6.1 (1)
Cisco CatOS 6.1
Cisco CatOS 5.5 (9)
Cisco CatOS 5.5 (8a)CV
Cisco CatOS 5.5 (8a)
Cisco CatOS 5.5 (8)
Cisco CatOS 5.5 (7a)
Cisco CatOS 5.5 (7)
Cisco CatOS 5.5 (6a)
Cisco CatOS 5.5 (6)
Cisco CatOS 5.5 (5)
Cisco CatOS 5.5 (4b)
Cisco CatOS 5.5 (4a)
Cisco CatOS 5.5 (4)
Cisco CatOS 5.5 (3)
Cisco CatOS 5.5 (2)
Cisco CatOS 5.5 (1a)
Cisco CatOS 5.5 (14)
Cisco CatOS 5.5 (13a)
Cisco CatOS 5.5 (13.5)
Cisco CatOS 5.5 (13)
Cisco CatOS 5.5 (12a)
Cisco CatOS 5.5 (12)
Cisco CatOS 5.5 (11a)
Cisco CatOS 5.5 (11)
Cisco CatOS 5.5 (10a)
Cisco CatOS 5.5 (10)
Cisco CatOS 5.5 (1)
Cisco CatOS 5.5
Cisco CatOS 5.4 (4a)
Cisco CatOS 5.4 (4)
Cisco CatOS 5.4 (3)
Cisco CatOS 5.4 (2a)
Cisco CatOS 5.4 (2)
Cisco CatOS 5.4 (1) - deferred
Cisco CatOS 5.4 (1)
Cisco CatOS 5.4
Cisco CatOS 5.3 (6a)CSX
Cisco CatOS 5.3 (6)CSX
Cisco CatOS 5.3 (5a)CSX
Cisco CatOS 5.3 (5)CSX
Cisco CatOS 5.3 (4)CSX
Cisco CatOS 5.3 (3)CSX
Cisco CatOS 5.3 (2)CSX
Cisco CatOS 5.3 (1a)CSX
Cisco CatOS 5.2 (7a)
Cisco CatOS 5.2 (7)
Cisco CatOS 5.2 (6)
Cisco CatOS 5.2 (5)
Cisco CatOS 5.2 (4)
Cisco CatOS 5.2 (3a)CSX
Cisco CatOS 5.2 (3)CSX
Cisco CatOS 5.2 (3)
Cisco CatOS 5.2 (2)CSX
Cisco CatOS 5.2 (2)
Cisco CatOS 5.2 (1)CSX
Cisco CatOS 5.2 (1)
Cisco CatOS 5.1 (2b)
Cisco CatOS 5.1 (2a)
Cisco CatOS 5.1 (1a)CSX
Cisco CatOS 5.1 (1a)
Cisco CatOS 5.1 (1)CSX
Cisco CatOS 5.1 (1)
Cisco CatOS 4.5 (9)
Cisco CatOS 4.5 (8)
Cisco CatOS 4.5 (7)
Cisco CatOS 4.5 (6a)
Cisco CatOS 4.5 (6)
Cisco CatOS 4.5 (5)
Cisco CatOS 4.5 (4)
Cisco CatOS 4.5 (3)
Cisco CatOS 4.5 (2)
Cisco CatOS 4.5 (13a)
Cisco CatOS 4.5 (13)
Cisco CatOS 4.5 (12a)
Cisco CatOS 4.5 (12)
Cisco CatOS 4.5 (11)
Cisco CatOS 4.5 (10)
Cisco CatOS 4.5 (1)
Cisco CatOS 4.4 (1)
Cisco CatOS 4.3 (1a)
Cisco CatOS 4.2 (2)
Cisco CatOS 4.2 (1)
Cisco CatOS 4.1 (3)
Cisco CatOS 4.1 (2)
Cisco CatOS 4.1 (1)
Cisco CatOS 3.2 (8) - GDR
Cisco CatOS 3.2 (7)
Cisco CatOS 3.2 (6)
Cisco CatOS 3.2 (5)
Cisco CatOS 3.2 (4)
Cisco CatOS 3.2 (3)
Cisco CatOS 3.2 (2)
Cisco CatOS 3.2 (1b)
Cisco CatOS 3.2 (1)
Cisco CatOS 3.1 (2a)
Cisco CatOS 3.1 (2)
Cisco CatOS 3.1 (1)
Cisco CatOS 2.4 (5a)
Cisco CatOS 2.4 (5)
Cisco CatOS 2.4 (4)
Cisco CatOS 2.4 (3)
Cisco CatOS 2.4 (2)
Cisco CatOS 2.4 (1)
Cisco CatOS 2.3 (1)
Cisco CatOS 2.2 (2)
Cisco CatOS 2.2 (1)
Cisco CatOS 2.1 (9)
Cisco CatOS 2.1 (8)
Cisco CatOS 2.1 (7)
Cisco CatOS 2.1 (6)
Cisco CatOS 2.1 (5)
Cisco CatOS 2.1 (4)
Cisco CatOS 2.1 (3)
Cisco CatOS 2.1 (2)
Cisco CatOS 2.1 (12)
Cisco CatOS 2.1 (11)
Cisco CatOS 2.1 (10)
Cisco CatOS 2.1 (1)
Cisco Catalyst 8540MSR描述:
Cisco Catalyst 8540CSR
Cisco Catalyst 8510MSR
Cisco Catalyst 8510CSR
Cisco Catalyst 8500
Cisco Catalyst 4908G-l3
Cisco Catalyst 4840G
Cisco Catalyst 4800
Cisco Catalyst 4232-13
Cisco Catalyst 4232
Cisco Catalyst 4224 Access Gateway Switch
Cisco Catalyst 4200
Cisco Catalyst 3750 Metro
Cisco Catalyst 3750
Cisco Catalyst 3560
Cisco Catalyst 3550
Cisco Catalyst 3500 XL
Cisco Catalyst 2970
Cisco Catalyst 2955
Cisco Catalyst 2950 LRE
Cisco Catalyst 2950
Cisco Catalyst 2948G-l3
Cisco Catalyst 2940
Cisco Catalyst 2900 XL
Cisco Catalyst 2900 LRE XL
Cisco Catalyst 2820 9.00.07
Cisco Catalyst 2820
Cisco Catalyst 1900 9.00.07
Cisco Catalyst 1900
Cisco CatOS 8.3 (2)GLX
Cisco CatOS 8.2 (2)
Cisco CatOS 7.6 (6)
Cisco CatOS 6.4 (9)
Cisco CatOS 5.5 (20)
BUGTRAQ ID: 10504
Cisco Catalyst交换机运行的是CatOS操作系统。
Cisco CatOS不正确初始化TCP握手,远程攻击者可以利用这个漏洞对设备进行拒绝服务攻击。
攻击者通过不发送常规的最后ACK确认来完成3次TCP握手,相反发送非法应答使连接进入非法TCP状态,可导致产生TCP-ACK拒绝服务攻击,此攻击可从某一远程伪造源进行初始化攻击。
此漏洞只有当使用Telnet、Http或者SSH服务时才存在此问题。
<*来源:Cisco PSIRT (psirt@cisco.com)
链接:http://www.cisco.com/warp/public/707/cisco-sa-20040609-catos.shtml
*>
建议:
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(cisco-sa-20040609-catos)以及相应补丁:
cisco-sa-20040609-catos:Cisco CatOS Telnet, HTTP and SSH Vulnerability
链接:http://www.cisco.com/warp/public/707/cisco-sa-20040609-catos.shtml
可从如下地址获得升级版本:
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd/images.htm
拥有服务合同的客户必须连接他们常规升级渠道获得由此公告指定的免费升级软件。对于大多数拥有服务合同的客户,这意味着升级必须通过CISCO全球WEB站软件中心获得:
http://www.cisco.com/tacpage/sw-center/sw-lan.shtml.
要访问此下载URL,你必须是注册用户和必须登录后才能使用。
事先或目前与第三方支持组织,如Cisco合作伙伴、授权零售商或服务商之间已有协议,由第三方组织提供Cisco产品或技术支持的用户可免费获得升级支持。
直接从Cisco购买产品但没有Cisco服务合同的用户和由第三方厂商购买产品但无法从销售方获得已修复软件的用户可从Cisco技术支持中心(TAC)获取升级软件。TAC联系方法:
* +1 800 553 2447 (北美地区免话费)
* +1 408 526 7209 (全球收费)
* e-mail: tac@cisco.com
查看 http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml 获取额外的TAC联系信息,包括特别局部的电话号码,各种语言的指南和EMAIL地址。
浏览次数:3312
严重程度:0(网友投票)
绿盟科技给您安全的保障