CVE-2005-2841

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2ZH through 12.2ZL, 12.3 through 12.3T, and 12.4 through 12.4T

Description The issue is related to a buffer overflow in the Firewall Authentication Proxy for FTP and/or Telnet Sessions, which can be exploited by remote attackers using crafted user authentication credentials. This could lead to a denial of service and potentially allow the execution of arbitrary code.

Recommendations For Cisco IOS versions 12.2ZH through 12.2ZL, update to a version that includes the fix for this issue. For Cisco IOS versions 12.3 through 12.3T, update to a version that includes the fix for this issue. For Cisco IOS versions 12.4 through 12.4T, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Firewall Authentication Proxy for FTP and/or Telnet Sessions until a patch is available.