Title: Cisco IOS Router Scan Software Reloading Vulnerability
Severity: MODERATE
Description:
Cisco IOS is the firmware Operating System designed for use on various Cisco hardware. It is maintained by Cisco systems.
A problem in the firmware makes it possible for remote users to cause an arbitrary reload of the firmware. This problem could be used to deny service to legitimate users of network assets.
During normal operation, Cisco systems operate offering a minimal set of services. These services usually consist of a telnet daemon, an snmp daemon, and an httpd in some configurations.
By initiating a TCP scan within port ranges 3100-3999, 5100-5999, 7100-7999, and 10100-10999 on a Cisco system using a vulnerable version of IOS, the router becomes unstable. After being scanned, memory within the router becomes corrupted.
After the scan, attempting to access the configuration on the router causes the router to crash, and reload the configuration.
Affected Products:
- Cisco IOS 12.1DB
- Cisco IOS 12.1DC
- Cisco IOS 12.1T
- Cisco IOS 12.1XB
- Cisco IOS 12.1XC
- Cisco IOS 12.1XE
- Cisco IOS 12.1XF
- Cisco IOS 12.1XG
- Cisco IOS 12.1XH
- Cisco IOS 12.1XI
- Cisco IOS 12.1XJ
- Cisco IOS 12.1XK
- Cisco IOS 12.1XL
- Cisco IOS 12.1XP
- Cisco IOS 12.1XQ
- Cisco IOS 12.1XS
- Cisco IOS 12.1XT
References:
- Cisco Systems: Security Advisory: IOS Reload after Scanning Vulnerability
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
