ID
VAR-200307-0051
TITLE
Cisco Catalyst Non-Standard TCP Tag Remote Denial of Service Vulnerability
Trust: 0.6
DESCRIPTION
Cisco Catalyst is a family of business-grade switches distributed and maintained by CISCO. Cisco Catalyst does not properly handle non-standard TCP packet communication. A remote attacker can exploit this vulnerability to perform a denial of service attack on the switch device, causing legitimate users to fail to communicate properly. Introducing a TCP connection using eight non-standard TCP tag combinations, the Catalyst switch will stop the normal TCP response for some services. To re-use the functionality of this service, the switch needs to be restarted. These standard services, including HTTP, Telnet, and SSH, are not affected by this vulnerability, including console communications. This Cisco bug ID is: CSCdw52219. Because of this, an attacker may be able to deny legitimate user access to the switch
Trust: 0.81
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5 | Trust: 3.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.1 | Trust: 2.7 |
| vendor: | cisco | model: | catos csx | scope: | eq | version: | 5.3 | Trust: 2.4 |
| vendor: | cisco | model: | catos csx | scope: | eq | version: | 5.2 | Trust: 1.2 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3 | Trust: 0.9 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.2 | Trust: 0.9 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.4 | Trust: 0.9 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.1 | Trust: 0.9 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5 | Trust: 0.9 |
| vendor: | no | model: | - | scope: | - | version: | - | Trust: 0.6 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 7.1 | Trust: 0.6 |
| vendor: | cisco | model: | catos csx | scope: | eq | version: | 5.1 | Trust: 0.6 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 7.4 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 7.1(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 7.1(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(5.10) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(5) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(4) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(3)x1 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(3)x | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.3(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.2(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.2(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.2(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.1(4) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.1(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.1(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 6.1(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(9) | Trust: 0.3 |
| vendor: | cisco | model: | catos cv | scope: | eq | version: | 5.5 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(8) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(7) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(6) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(5) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(4) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(13.5) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(13) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(12) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(11) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(10) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.5(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.4(4) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.4(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.4(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.4(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2(7) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2(6) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2(5) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2(4) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.2(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.1(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(9) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(8) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(7) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(6) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(5) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(4) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(13) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(12) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(11) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(10) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.5(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.4(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.3 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.2(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.2(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.1(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.1(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | eq | version: | 4.1(1) | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 50005.5(13) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 8.1 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.6(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.6 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.5(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.5 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.4(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.3(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.3(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.3 | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 7.2(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 6.4(3) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 6.4(2) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 6.4(1) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 6.3(6) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 5.5(14) | Trust: 0.3 |
| vendor: | cisco | model: | catos | scope: | ne | version: | 4.5(14) | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
THREAT TYPE
network
Trust: 0.3
TYPE
Failure to Handle Exceptional Conditions
Trust: 0.3
PATCH
| title: | Cisco Catalyst Non-Standard TCP Tag Remote Denial of Service Vulnerability Patch | url: | https://www.cnvd.org.cn/patchinfo/show/42616 | Trust: 0.6 |
EXTERNAL IDS
| db: | BID | id: | 8149 | Trust: 0.9 |
| db: | CNVD | id: | CNVD-2003-2105 | Trust: 0.6 |
REFERENCES
| url: | http://www.cisco.com/warp/public/707/cisco-sa-20030709-swtcp.shtml | Trust: 0.9 |
CREDITS
Vulnerability disclosed by Cisco.
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2003-2105 |
| db: | BID | id: | 8149 |
LAST UPDATE DATE
2022-05-17T01:44:50.822000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2003-2105 | date: | 2014-01-20T00:00:00 |
| db: | BID | id: | 8149 | date: | 2003-07-09T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2003-2105 | date: | 2003-07-09T00:00:00 |
| db: | BID | id: | 8149 | date: | 2003-07-09T00:00:00 |