Intrusion Prevention

Cisco.Catalyst.Memory.Leak.DoS

Description

This indicates an attack attempt against a Denial of Service vulnerability in Cisco Catalyst switch.
The vulnerability is caused by an error when the vulnerable software handles malicious telnet login packets. It allows a remote attacker to crash vulnerable systems via sending multiple crafted telnet login packets.

Affected Products

Cisco Catalyst 6000 5.5 (4a)
Cisco Catalyst 6000 5.5 (4)
Cisco Catalyst 6000 5.5 (3)
Cisco Catalyst 6000 5.5 (2)
Cisco Catalyst 6000 5.5 (1)
Cisco Catalyst 6000 5.5
Cisco Catalyst 6000 5.4 (4)
Cisco Catalyst 6000 5.4 (3)
Cisco Catalyst 6000 5.4 (2)
Cisco Catalyst 6000 5.4 (1)
Cisco Catalyst 6000 5.4
Cisco Catalyst 6000 5.3 (6)CSX
Cisco Catalyst 6000 5.3 (5a)CSX
Cisco Catalyst 6000 5.3 (5)CSX
Cisco Catalyst 6000 5.3 (4)CSX
Cisco Catalyst 6000 5.3 (3)CSX
Cisco Catalyst 6000 5.3 (2)CSX
Cisco Catalyst 6000 5.3 (1a)CSX
Cisco Catalyst 6000 5.3 (1)CSX
Cisco Catalyst 5000 5.5 (4)
Cisco Catalyst 5000 5.5 (3)
Cisco Catalyst 5000 5.5 (2)
Cisco Catalyst 5000 5.5 (1)
Cisco Catalyst 5000 5.4.1
Cisco Catalyst 5000 5.4 (4)
Cisco Catalyst 5000 5.4 (2)
Cisco Catalyst 5000 5.4 (1)
Cisco Catalyst 5000 5.2 (4)
Cisco Catalyst 5000 5.2 (3)
Cisco Catalyst 5000 5.2 (2)
Cisco Catalyst 5000 5.2 (1)
Cisco Catalyst 5000 5.2
Cisco Catalyst 5000 5.1 (2a)
Cisco Catalyst 5000 5.1 (1)
Cisco Catalyst 5000 5.1
Cisco Catalyst 5000 4.5 (9)
Cisco Catalyst 5000 4.5 (8)
Cisco Catalyst 5000 4.5 (7)
Cisco Catalyst 5000 4.5 (6)
Cisco Catalyst 5000 4.5 (5)
Cisco Catalyst 5000 4.5 (4)
Cisco Catalyst 5000 4.5 (3)
Cisco Catalyst 5000 4.5 (2)
Cisco Catalyst 4000 5.5 (1)
Cisco Catalyst 4000 5.5
Cisco Catalyst 4000 5.4 (3)
Cisco Catalyst 4000 5.4 (2)
Cisco Catalyst 4000 5.4 (1)
Cisco Catalyst 4000 5.4
Cisco Catalyst 4000 5.2 (7)
Cisco Catalyst 4000 5.2 (6)
Cisco Catalyst 4000 5.2 (5)
Cisco Catalyst 4000 5.2 (4)
Cisco Catalyst 4000 5.2 (2)
Cisco Catalyst 4000 5.2 (1a)
Cisco Catalyst 4000 5.2 (1)
Cisco Catalyst 4000 5.2
Cisco Catalyst 4000 5.1 (2a)
Cisco Catalyst 4000 5.1 (1a)
Cisco Catalyst 4000 5.1 (1)
Cisco Catalyst 4000 5.1
Cisco Catalyst 4000 4.5 (9)
Cisco Catalyst 4000 4.5 (8)
Cisco Catalyst 4000 4.5 (7)
Cisco Catalyst 4000 4.5 (6)
Cisco Catalyst 4000 4.5 (5)
Cisco Catalyst 4000 4.5 (4)
Cisco Catalyst 4000 4.5 (3)
Cisco Catalyst 4000 4.5 (2)

Impact

System Compromise: Remote attackers can crash vulnerable systems.

Recommended Actions

Refer to the vendor's web site for suggested workaround.
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20001206-catalyst-memleak