CVE-2005-1020

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0 through 12.3

Description The issue allows remote attackers to cause a denial of service, resulting in a device reload. This can occur in three scenarios: when a username containing a domain name is used with a TACACS+ server for authentication, when a new SSH session is in the login phase and a currently logged-in user issues a send command, or when the system is logging messages and an SSH session is terminated while the server is sending data.

Recommendations For Cisco IOS versions 12.0 through 12.3, consider disabling SSH 2 until a patch is available to prevent potential denial of service attacks. As a temporary workaround, restrict the use of TACACS+ server authentication and limit the issuance of send commands during the SSH login phase. Additionally, configure the system to handle logging messages and SSH session terminations more robustly to minimize the risk of device reloads.