SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Router/Bridge/Hub)  >   Cisco IOS Vendors:   Cisco
Cisco IOS TCP ACK Processing Lets Remote Users Deny Service
SecurityTracker Alert ID:  1028969
SecurityTracker URL:  http://securitytracker.com/id/1028969
CVE Reference:   CVE-2013-5469   (Links to External Site)
Date:  Aug 30 2013
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in Cisco IOS. A remote user can cause denial of service conditions.

A remote user can exploit a flaw in the TCP stack and send a specially crafted sequence of TCP ACK and FIN packets to the target device to cause an ACK storm, consuming excessive network bandwidth and CPU resources.

The vendor has assigned bug ID CSCtz14399 to this vulnerability.

Impact:   A remote user can consume excessive network bandwidth and CPU resources.
Solution:   The vendor has issued a fix.

The vendor's advisory is available at:

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5469

Vendor URL:  tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5469 (Links to External Site)
Cause:   State error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC