DISCARD: Ascent/Lucent Router Information Disclosure
This signature detects attempts to exploit vulnerabilities in Lucent and Ascend routers. Attackers can send a maliciously crafted packet to the DISCARD port of the router to obtain confidential information. This information can be used to further compromise the system.
Extended Description
Several Lucent Router product lines include support for a configuration tool which communicates over UDP on port 9. If a specially crafted packet is sent to some of these devices on UDP port 9, a response is issued which contains sensitive information. This information may be of aid in further attacks against the network or device.
Affected Products
Lucent ascend_max_router
References
BugTraq: 5335
URL: http://www.juniper.net/security/auto/vulnerabilities/vuln2094.html http://www.lucent.com/
Short Name
DISCARD:INFO:ASCEND-DISCARD
Severity
Warning
Recommended
False
Recommended Action
None
Category
DISCARD
Keywords
Ascent/Lucent Disclosure Information Router bid:5335
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Lucent
Ascend