Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco ONS 15327, ONS 15454, ONS 15454 SDH, and ONS 15600 Malformed Packet Vulnerabilities

cisco-sa-20040721-ons · NA · Published · Updated

Cisco has fixed multiple malformed packet vulnerabilities in the TCP/IP stacks of Cisco ONS 15327 Edge Optical Transport Platform, the Cisco ONS 15454 Optical Transport Platform, the Cisco ONS 15454 SDH Multiplexer Platform, and the Cisco ONS 15600 Multiservice Switching Platform. These vulnerabilities are documented as the following Cisco bug IDs CSCed06531 (IP) CSCed86946 (ICMP) CSCec88426/CSCec88508/CSCed85088/CSCeb07263/CSCec21429 (TCP) CSCec59739/CSCed02439/CSCed22547 (Last-ACK) CSCec88402/CSCed31918/CSCed83309/CSCec85982/CSCec21435/CSCee03697 (UDP) CSCea16455/CSCea37089/CSCea37185 (SNMP) CSCee27329 (passwd) There are workarounds available to mitigate the exposure to these vulnerabilities in the workaround section of this advisory. Cisco is providing fixed software, and recommends that customers upgrade to it. This advisory will be posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20040721-ons.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2004-1432, CVE-2004-1433, CVE-2004-1434, CVE-2004-1435
Cisco Bug IDsNA
CVSS ScoreBase NA
Product Names From Source
NA, Cisco Optical Networking Systems (ONS)

Related Products

Product CVE Evidence
Cisco Optical Networking Systems (ONS) CVE-2004-1435 Cisco OpenVuln
Cisco Optical Networking Systems (ONS) CVE-2004-1434 Cisco OpenVuln
Cisco Optical Networking Systems (ONS) CVE-2004-1433 Cisco OpenVuln
Cisco Optical Networking Systems (ONS) CVE-2004-1432 Cisco OpenVuln