PT-2004-2350 · Cisco · Cisco Ons 15454+2
Published
2004-12-31
·
Updated
2018-10-30
·
CVE-2004-1435
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Cisco ONS 15327 versions prior to 4.6(2)
Cisco ONS 15454 versions prior to 4.6(2)
Cisco ONS 15454 SDH versions prior to 4.6(2)
Description:
The issue allows remote attackers to cause a denial of service, resulting in a control card reset. This can be achieved by establishing a large number of TCP connections with an invalid response instead of the final ACK (TCP-ACK).
Recommendations:
For Cisco ONS 15327 versions prior to 4.6(2), update to version 4.6(2) or later to resolve the issue.
For Cisco ONS 15454 versions prior to 4.6(2), update to version 4.6(2) or later to resolve the issue.
For Cisco ONS 15454 SDH versions prior to 4.6(2), update to version 4.6(2) or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cisco Ons 15327
Cisco Ons 15454
Cisco Ons 15454 Sdh