|
信息提供: |
安全公告(或线索)提供热线:51cto.editor@gmail.com |
|
漏洞类别: |
缓存溢出漏洞 |
|
攻击类型: |
远程攻击 |
|
发布日期: |
2005-09-07 |
|
更新日期: |
2005-09-27 |
|
受影响系统: |
Cisco IOS 12.4 T Cisco IOS 12.4 MR Cisco IOS 12.4 Cisco IOS 12.3 YW Cisco IOS 12.3 YU Cisco IOS 12.3 YT Cisco IOS 12.3 YS Cisco IOS 12.3 YQ Cisco IOS 12.3 YK Cisco IOS 12.3 YJ Cisco IOS 12.3 YI Cisco IOS 12.3 YG Cisco IOS 12.3 YF Cisco IOS 12.3 YD Cisco IOS 12.3 YA Cisco IOS 12.3 XY Cisco IOS 12.3 XW Cisco IOS 12.3 XU Cisco IOS 12.3 XS Cisco IOS 12.3 XR Cisco IOS 12.3 XQ Cisco IOS 12.3 XM Cisco IOS 12.3 XL Cisco IOS 12.3 XK Cisco IOS 12.3 XJ Cisco IOS 12.3 XI Cisco IOS 12.3 XH Cisco IOS 12.3 XG Cisco IOS 12.3 XF Cisco IOS 12.3 XE Cisco IOS 12.3 XD Cisco IOS 12.3 XC Cisco IOS 12.3 XB Cisco IOS 12.3 XA Cisco IOS 12.3 T Cisco IOS 12.3 JK Cisco IOS 12.3 JA Cisco IOS 12.3 BW Cisco IOS 12.3 BC Cisco IOS 12.3 B Cisco IOS 12.3 (9d) Cisco IOS 12.3 (6e) Cisco IOS 12.3 (5e) Cisco IOS 12.3 (3h) Cisco IOS 12.3 (13a) Cisco IOS 12.3 (12b) Cisco IOS 12.3 (10d) Cisco IOS 12.2 ZL Cisco IOS 12.2 ZF Cisco IOS 12.2 SXF Cisco IOS 12.2 SH Cisco IOS 12.2 SEC |
|
安全系统: |
无 |
|
漏洞报告人: |
Eric Sheridan |
|
漏洞描述: |
Bugtraq ID: 14770 Cisco IOS防火墙验证代理存在一个缓存溢出漏洞,成功地攻击可导致拒绝服务或者潜在的执行任意的代码。 该漏洞存在于FTP和Telnet协议,但HTTP协议不存在该漏洞。 |
|
测试方法: |
无 |
|
解决方法: |
Cisco已经发布了安全公告来修复该漏洞,可通过Cisco网站升级防火墙。 Cisco升级公告66269指出IOS 12.2ZH不存在该漏洞,但IOS 12.2SH和12.2ZF版本存在该漏洞。 更多信息请参看下面链接:
|
更多内容请看PCdog.com--Cisco IOS技术手册 Cisco交换机 Cisco路由器配置手册专题
