Cisco IOS防火墙认证代理缓冲区溢出漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109057 漏洞类型 缓冲区溢出
发布时间 2005-09-07 更新时间 2005-09-08
CVE编号 CVE-2005-2841 CNNVD-ID CNNVD-200509-072
漏洞平台 Hardware CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/26233
https://www.securityfocus.com/bid/89349
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200509-072
|漏洞详情
Cisco的网际操作系统(IOS)是一个为网际互连优化的复杂的操作系统--类似一个局域操作系统(NOS)、如Novell的NetWare,为LANs而进行优化。CiscoIOS12.2ZH,12.2ZL,12.3和12.3T版本的防火墙认证代理在FTP和(或)Telnet会话中存在缓冲区溢出漏洞,这允许攻击者通过伪造用户证书发起DOS攻击,并可能执行任意的代码。
|漏洞EXP
source: http://www.securityfocus.com/bid/14770/info

Cisco IOS Firewall Authentication Proxy is prone to a buffer overflow condition. Successful exploitation of this issue could cause a denial of service or potential execution of arbitrary code.

This issue affects the FTP and Telnet protocols, but not HTTP. 

perl -e 'print "pass "; print "A" x 51; print "@ \n";'
|受影响的产品
Cisco IOS 12.4T Cisco IOS 12.4 Cisco IOS 12.3T Cisco IOS 12.3 Cisco IOS 12.2ZL Cisco IOS 12.2ZH
|参考资料

来源:US-CERT
名称:VU#236045
链接:http://www.kb.cert.org/vuls/id/236045
来源:VUPEN
名称:ADV-2005-1669
链接:http://www.frsirt.com/english/advisories/2005/1669
来源:CISCO
名称:20050907CiscoIOSFirewallAuthenticationProxyforFTPandTelnetSessionsBufferOverflow
链接:http://www.cisco.com/warp/public/707/cisco-sa-20050907-auth_proxy.shtml
来源:OVAL
名称:oval:org.mitre.oval:def:5317
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5317