Title: Marconi ASX-1000 Administration Denial Of Service Vulnerability
Severity: MODERATE
Description:
ASX-1000 Switches are hardware packages developed by Marconi Corporation. ASX-1000 Switches can be used to regulate ATM networks, performing layer-3 switching. These switches are designed for maximum availability and high performance network switching, handling speeds between 2.5 Gbps and 10 Gbps.
A problem with these switches can create a situation which allows for Denial of Server of the Administrative interface, and potentially a network traffic interruption. The problem is the result of the administrative services incorrectly handling some types of traffic, and entering a state that does not allow remote communication.
Under normal circumstances, the services on the switch function normally, allowing users to connect remotely, and administrate the system through either a web interface, or telnet session. However, upon the receipt of fragments of packets with the SYN-FIN bits set, the daemon listening sends the port to the CLOSE_WAIT state. The entry of the service into CLOSE_WAIT state is terminal, and the service does not function again until the port is either reset, or the switch is power cycled.
This problem affects Fore/Marconi firmware Forethought 6.2.
Affected Products:
- Marconi ForeThought 6.2.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
