漏洞信息详情
Cisco iOS Cisco Express Forwarding模式会话信息泄露漏洞
- CNNVD编号:CNNVD-200206-066
- 危害等级: 低危
- CVE编号: CVE-2002-0339
- 漏洞类型: 未知
- 发布时间: 2002-02-27
- 威胁类型: 远程
- 更新时间: 2005-05-02
- 厂 商: cisco
- 漏洞来源: Cisco Security Adv...
漏洞简介
iOS(Internet Operating System)是广泛用于Cisco路由器的操作系统,由Cisco公司开发和维护。 某些版本的iOS在Cisco Express Forwarding(CEF)实现上存在漏洞,可能导致转发数据包信息泄露。 当Cisco路由器处于Cisco Express Forwarding(CEF)模式时,如果路由器收到的数据包其IP头里指明的长度大于包的物理长度时,这样的包会被扩展长度到到IP包头指定的值,当扩展之时,用于扩展的数据来自内存中存储的之前转发过的数据,从而导致了信息的泄露。 攻击者无法指定所要获取的信息内容,这减少了获取敏感信息的可能性。
漏洞公告
临时解决方法: 如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
* 在漏洞修补之前,在路由器上禁止使用Cisco Express Forwarding模式。 厂商补丁: Cisco ----- Cisco已经为此发布了一个安全公告(Cisco-iOS-CEF-pub)以及相应补丁:
Cisco-iOS-CEF-pub:Data Leak with Cisco Express Forwarding Enabled
链接: http://www.cisco.com/warp/public/707/iOS-CEF-pub.sHTML
下面是受影响版本的补丁状态表:
+------------------------------------------------------------------------+
| Train | Description of Image | Availability of Fixed Releases* |
| | or Platform | |
|--------------------------------+---------------------------------------|
| 11.1-based Releases | Rebuild | Interim** | Maintenance |
|--------------------------------+----------+--------------+-------------|
| 11.1CC | ED release for 7000 | 11.1(36) | | |
| | series | CC3 | | |
|--------------------------------+----------+--------------+-------------|
| 12.0-based Releases | Rebuild | Interim** | Maintenance |
|--------------------------------+----------+--------------+-------------|
| 12.0 | GD release for all | | 12.0(20.4) | |
| | platforms | | | |
|--------+-----------------------+----------+--------------+-------------|
| 12.0S | ED release for all | 12.0(17) | 12.0(18.3)S | 12.0(19)S |
| | platforms | ST4 | | |
|--------+-----------------------+----------+--------------+-------------|
| 12.0ST | ED release for all | | 12.0(18.3)ST | 12.0(19)ST |
| | platforms | | | |
|--------+-----------------------+---------------------------------------|
| 12.0T | ED release for all | To be decided |
| | platforms | |
|--------+-----------------------+---------------------------------------|
| 12.0W5 | ED release for all | | 12.0(20.4)W5 | |
| | platforms | | (24.7) | |
|--------------------------------+----------+--------------+-------------|
| 12.1-based Releases | Rebuild | Interim** | Maintenance |
|--------------------------------+----------+--------------+-------------|
| 12.1 | LD release for all | | 12.1(9.2) | 12.1(10) |
| | platforms | | | |
|--------+-----------------------+----------+--------------+-------------|
| 12.1E | ED release for all | 12.1 | 12.1(9.5)E | 12.1(8a)E |
| | platforms | (8.5)E2 | | |
|--------+-----------------------+----------+--------------+-------------|
| 12.1EC | ED release for all | 12.1 | 12.1(9.5)EC | |
| | platforms | (7.5)EC1 | | |
|--------+-----------------------+---------------------------------------|
| 12.1T | ED release for all | To be decided |
| | platforms | |
|--------+-----------------------+---------------------------------------|
| 12.1XM | ED release for all | 12.1(5) | | |
| &n
参考网址
来源:US-CERT Vulnerability Note: VU#310387 名称: VU#310387 链接:http://www.kb.cert.org/vuls/id/310387 来源: BID 名称: 4191 链接:http://www.securityfocus.com/bid/4191 来源: XF 名称: iOS-cef-information-leak(8296) 链接:http://www.iss.net/security_center/static/8296.php 来源: CISCO 名称: 20020227 Cisco Security Advisory: Data Leak with Cisco Express Forwarding 链接:http://www.cisco.com/warp/public/707/iOS-CEF-pub.sHTML 来源: OSVDB 名称: 806 链接:http://www.osvdb.org/806
受影响实体
补丁
暂无
评论