PT-2004-2349 · Cisco · Cisco Ons 15454+2
Published
2004-12-31
·
Updated
2018-10-30
·
CVE-2004-1434
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Cisco ONS 15327 versions 4.0(0) through 4.1(2), 4.5(x) and earlier
Cisco ONS 15454 versions 4.0(0) through 4.1(2), 4.5(x) and earlier
Cisco ONS 15454 SDH versions 4.0(0) through 4.1(2), 4.5(x) and earlier
Description:
The issue allows remote attackers to cause a denial of service, resulting in a control card reset, by sending malformed SNMP packets.
Recommendations:
For Cisco ONS 15327 versions 4.0(0) through 4.1(2), 4.5(x) and earlier, restrict access to SNMP to minimize the risk of exploitation.
For Cisco ONS 15454 versions 4.0(0) through 4.1(2), 4.5(x) and earlier, restrict access to SNMP to minimize the risk of exploitation.
For Cisco ONS 15454 SDH versions 4.0(0) through 4.1(2), 4.5(x) and earlier, restrict access to SNMP to minimize the risk of exploitation.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cisco Ons 15327
Cisco Ons 15454
Cisco Ons 15454 Sdh