Running on Cisco Content Services Switch (CSS) Series 资源管理错误漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1189243 漏洞类型 资源管理错误
发布时间 2007-09-04 更新时间 2007-09-04
CVE编号 CVE-2007-4654 CNNVD-ID CNNVD-200709-025
漏洞平台 N/A CVSS评分 5.0
|漏洞来源
https://www.securityfocus.com/bid/85398
https://cxsecurity.com/issue/WLB-2007090011
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200709-025
|漏洞详情
CiscoContentServicesSwitch(CSS)series11000驱动程序上的CiscoWebNS8.20.0.1的OpenSSH3.0.2p1的SSHield1.6.1版本中存在未明漏洞。远程攻击者可以借助一系列的设计来利用SSHCRC32攻击检测溢出(CVE-2001-0144),造成拒绝服务(链接slot耗损和驱动程序崩溃)。
|漏洞EXP
Undocument bug on Cisco CSS series 11000 with Webns 8.20.0.1

Cisco CSS series 11000 with webns system and ssh daemon crash on  ssh 
crc32 old 2001 exploit

Cisco CSS :
Webns Version:  08.20.0.01  (using command sh ver)
SSH Version: SSHield version 1.6.1, SSH version OpenSSH_3.0.2p1 (using 
command sh sshd version)

CSS is default configured with max 5 concurrency session

with old shack exploit css does not relase connection and when it get 5 
connection it crashes with no other possibility of connection

Alessandro Fiorenzi  aka NetExpress
|受影响的产品
Teamf1 Sshield 1.6.1 OpenBSD OpenSSH 3.0.2 p1
|参考资料

来源:XF
名称:cisco-css-sshield-dos(44542)
链接:http://xforce.iss.net/xforce/xfdb/44542
来源:BUGTRAQ
名称:20070830CiscoCSSWebNSsshcrash
链接:http://www.securityfocus.com/archive/1/archive/1/478165/100/0/threaded
来源:OSVDB
名称:45873
链接:http://osvdb.org/45873
来源:SREASON
名称:3091
链接:http://securityreason.com/securityalert/3091