Details of VAR-200505-0778

ID

VAR-200505-0778

CVE

CVE-2005-1609

TITLE

Multiple Cisco products consume excessive CPU resources in response to large SSH packets

Trust: 0.8

sources: CERT/CC: VU#290140

DESCRIPTION

Unknown vulnerability in Sun StorEdge 6130 Arrays (SE6130) with serial numbers between 0451AWF00G and 0513AWF00J allows local users and remote attackers to delete data. Multiple Cisco networking products contain a denial-of-service vulnerability. There is an information integrity vulnerability in the SSH1 protocol that allows packets encrypted with a block cipher to be modified without notice. There is a remote integer overflow vulnerability in several implementations of the SSH1 protocol that allows an attacker to execute arbitrary code with the privileges of the SSH daemon, typically root. The program pgp4pine version 1.75.6 fails to properly identify expired keys when working with the Gnu Privacy Guard program (GnuPG). This failure may result in the clear-text transmission of senstive information when used with the PINE mail reading package. The SEDUM web server permits intruders to access files outside the web root. While addressing vulnerabilities described in http://www.cisco.com/warp/public/707/SSH-multiple-pub.html, a denial of service condition has been inadvertently introduced into firmware upgrades. Firmware for routers and switches (IOS), Catalyst 6000 switches running CatOS, Cisco PIX Firewall and Cisco 11000 Content Service Switch devices may be vulnerable. Cisco has reported that scanning for SSH vulnerabilities on affected devices will cause excessive CPU consumption. The condition is due to a failure of the Cisco SSH implementation to properly process large SSH packets. Repeated and concurrent attacks may result in a denial of device service. As many of these devices are critical infrastructure components, more serious network outages may occur. Cisco has released upgrades that will eliminate this vulnerability

Trust: 6.93

sources: NVD: CVE-2005-1609 // CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#812438 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // BID: 5114

AFFECTED PRODUCTS

vendor:	ssh security	model:	-	scope:	-	version:	-	Trust: 3.2
vendor:	cisco	model:	catalyst csx	scope:	eq	version:	60005.3	Trust: 2.4
vendor:	cisco	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	openssh	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	cisco	model:	ios 12.1 ex	scope:	-	version:	-	Trust: 1.2
vendor:	sun	model:	storedge 6130 arrays	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1	Trust: 0.9
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5	Trust: 0.9
vendor:	sun microsystems	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	core sdi	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	debian	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	freebsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	smoothwall	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	suse	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	holger lamm	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sun	model:	storedge 6130 arrays	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	pix firewall	scope:	eq	version:	6.2	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	6.1	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	6.0	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	5.3	Trust: 0.3
vendor:	cisco	model:	pix firewall	scope:	eq	version:	5.2	Trust: 0.3
vendor:	cisco	model:	ios 12.2yh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2yb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2ya	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xw	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xt	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xs	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xr	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xn	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xk	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xe	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2xa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2dd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2da	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2bc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2b	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.2	Trust: 0.3
vendor:	cisco	model:	ios 12.1yi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ye	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1yb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xu	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xt	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xp	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1ec	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1e	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0xv	Trust: 0.3
vendor:	cisco	model:	ios 12.0xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0st	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0sp	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	css11000 content services switch	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.1(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60007.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.3(4)	Trust: 0.3
vendor:	cisco	model:	catalyst pan	scope:	eq	version:	60006.3	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.2(0.111)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.2(0.110)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1(2.13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60006.1(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(13)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.5(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4.1	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(4)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(3)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(2)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4(1)	Trust: 0.3
vendor:	cisco	model:	catalyst	scope:	eq	version:	60005.4	Trust: 0.3

sources: CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#812438 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#315308 // BID: 5114 // CNNVD: CNNVD-200505-1066 // NVD: CVE-2005-1609

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2005-1609
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#290140
value:	21.09
Trust: 0.8
CARNEGIE MELLON:	VU#13877
value:	6.84
Trust: 0.8
CARNEGIE MELLON:	VU#812438
value:	5.67
Trust: 0.8
CARNEGIE MELLON:	VU#25309
value:	0.39
Trust: 0.8
CARNEGIE MELLON:	VU#945216
value:	99.00
Trust: 0.8
CARNEGIE MELLON:	VU#566640
value:	0.68
Trust: 0.8
CARNEGIE MELLON:	VU#651994
value:	1.50
Trust: 0.8
CARNEGIE MELLON:	VU#315308
value:	2.06
Trust: 0.8
CNNVD:	CNNVD-200505-1066
value:	HIGH
Trust: 0.6

NVD:	CVE-2005-1609
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	TRUE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	FALSE
version:	2.0
Trust: 1.0

sources: CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#812438 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // CNNVD: CNNVD-200505-1066 // NVD: CVE-2005-1609

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-1609

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200505-1066

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-200505-1066

CONFIGURATIONS

sources: NVD: CVE-2005-1609

EXTERNAL IDS

db:	CERT/CC	id:	VU#13877	Trust: 3.2
db:	CERT/CC	id:	VU#945216	Trust: 2.4
db:	CERT/CC	id:	VU#25309	Trust: 2.4
db:	SECUNIA	id:	15306	Trust: 2.4
db:	CERT/CC	id:	VU#812438	Trust: 2.4
db:	OSVDB	id:	16325	Trust: 1.6
db:	BID	id:	13566	Trust: 1.6
db:	SECTRACK	id:	1013921	Trust: 1.6
db:	NVD	id:	CVE-2005-1609	Trust: 1.6
db:	VUPEN	id:	ADV-2005-0491	Trust: 1.6
db:	BID	id:	5114	Trust: 1.1
db:	CERT/CC	id:	VU#290140	Trust: 0.8
db:	XF	id:	6449	Trust: 0.8
db:	BID	id:	2347	Trust: 0.8
db:	XF	id:	6083	Trust: 0.8
db:	XF	id:	6135	Trust: 0.8
db:	BID	id:	2405	Trust: 0.8
db:	CERT/CC	id:	VU#566640	Trust: 0.8
db:	BID	id:	2335	Trust: 0.8
db:	XF	id:	6063	Trust: 0.8
db:	CERT/CC	id:	VU#651994	Trust: 0.8
db:	XF	id:	6472	Trust: 0.8
db:	CERT/CC	id:	VU#315308	Trust: 0.8
db:	XF	id:	20542	Trust: 0.6
db:	XF	id:	6130	Trust: 0.6
db:	SUNALERT	id:	57771	Trust: 0.6
db:	CNNVD	id:	CNNVD-200505-1066	Trust: 0.6

sources: CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#812438 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // BID: 5114 // CNNVD: CNNVD-200505-1066 // NVD: CVE-2005-1609

REFERENCES

url:	http://www.kb.cert.org/vuls/id/13877	Trust: 2.4
url:	http://www.ssh.com/products/ssh/cert/	Trust: 2.4
url:	http://www.cert.org/advisories/ca-2001-35.html	Trust: 1.6
url:	http://www.kb.cert.org/vuls/id/945216	Trust: 1.6
url:	http://www.kb.cert.org/vuls/id/25309	Trust: 1.6
url:	http://www.kb.cert.org/vuls/id/812438	Trust: 1.6
url:	http://www.securityfocus.com/bid/13566	Trust: 1.6
url:	http://www.osvdb.org/16325	Trust: 1.6
url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57771-1	Trust: 1.6
url:	http://securitytracker.com/id?1013921	Trust: 1.6
url:	http://secunia.com/advisories/15306	Trust: 1.6
url:	http://www.cisco.com/warp/public/707/ssh-scanning.shtml	Trust: 1.1
url:	http://www.vupen.com/english/advisories/2005/0491	Trust: 1.0
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/20542	Trust: 1.0
url:	http://www.securityfocus.com/bid/5114	Trust: 0.8
url:	http://www.cisco.com/warp/public/707/ssh-multiple-pub.html	Trust: 0.8
url:	http://www.corest.com/files/files/11/crc32.pdf	Trust: 0.8
url:	http://www1.corest.com/common/showdoc.php?idx=131&idxseccion=10	Trust: 0.8
url:	http://sunsolve.sun.com/search/printfriendly.do?assetkey=1-26-57771-1	Trust: 0.8
url:	http://secunia.com/advisories/15306/	Trust: 0.8
url:	http://xforce.iss.net/static/6449.php	Trust: 0.8
url:	http://razor.bindview.com/publish/advisories/adv_ssh1crc.html	Trust: 0.8
url:	http://www1.corest.com/common/showdoc.php?idx=81&idxsection=10#	Trust: 0.8
url:	http://www.openssh.com/security.html	Trust: 0.8
url:	http://www.securityfocus.com/bid/2347	Trust: 0.8
url:	http://www.ssh.com/products/ssh/advisories/ssh1_crc-32.cfm	Trust: 0.8
url:	http://xforce.iss.net/static/6083.php	Trust: 0.8
url:	http://xforce.iss.net/alerts/advise100.php	Trust: 0.8
url:	http://www.cryptnet.net/fcp/audit/pgp4pine/01.html	Trust: 0.8
url:	http://www.securityfocus.com/bid/2405	Trust: 0.8
url:	http://xforce.iss.net/static/6135.php	Trust: 0.8
url:	http://devrandom.net/lists/archives/2001/2/bugtraq/0383.html	Trust: 0.8
url:	http://security-archive.merton.ox.ac.uk/bugtraq-200102/0389.html	Trust: 0.8
url:	http://pgp4pine.flatline.de/	Trust: 0.8
url:	http://www.securityfocus.com/bid/2335	Trust: 0.8
url:	http://xforce.iss.net/static/6063.php	Trust: 0.8
url:	http://www.securityfocus.com/archive/1/160452	Trust: 0.8
url:	http://xforce.iss.net/static/6472.php	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/20542	Trust: 0.6
url:	http://www.frsirt.com/english/advisories/2005/0491	Trust: 0.6

sources: CERT/CC: VU#290140 // CERT/CC: VU#13877 // CERT/CC: VU#812438 // CERT/CC: VU#25309 // CERT/CC: VU#945216 // CERT/CC: VU#566640 // CERT/CC: VU#651994 // CERT/CC: VU#315308 // BID: 5114 // CNNVD: CNNVD-200505-1066 // NVD: CVE-2005-1609

CREDITS

This issue was reported by Sun.

Trust: 0.6

sources: CNNVD: CNNVD-200505-1066

SOURCES

db:	CERT/CC	id:	VU#290140
db:	CERT/CC	id:	VU#13877
db:	CERT/CC	id:	VU#812438
db:	CERT/CC	id:	VU#25309
db:	CERT/CC	id:	VU#945216
db:	CERT/CC	id:	VU#566640
db:	CERT/CC	id:	VU#651994
db:	CERT/CC	id:	VU#315308
db:	BID	id:	5114
db:	CNNVD	id:	CNNVD-200505-1066
db:	NVD	id:	CVE-2005-1609

LAST UPDATE DATE

2022-05-06T22:35:16.451000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#290140	date:	2002-12-12T00:00:00
db:	CERT/CC	id:	VU#13877	date:	2003-05-20T00:00:00
db:	CERT/CC	id:	VU#812438	date:	2005-05-12T00:00:00
db:	CERT/CC	id:	VU#25309	date:	2002-03-05T00:00:00
db:	CERT/CC	id:	VU#945216	date:	2003-05-20T00:00:00
db:	CERT/CC	id:	VU#566640	date:	2002-01-15T00:00:00
db:	CERT/CC	id:	VU#651994	date:	2001-06-26T00:00:00
db:	CERT/CC	id:	VU#315308	date:	2002-03-05T00:00:00
db:	BID	id:	5114	date:	2002-06-27T00:00:00
db:	CNNVD	id:	CNNVD-200505-1066	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2005-1609	date:	2017-07-11T01:32:00

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#290140	date:	2002-06-27T00:00:00
db:	CERT/CC	id:	VU#13877	date:	2001-11-07T00:00:00
db:	CERT/CC	id:	VU#812438	date:	2005-05-11T00:00:00
db:	CERT/CC	id:	VU#25309	date:	2000-09-26T00:00:00
db:	CERT/CC	id:	VU#945216	date:	2001-10-24T00:00:00
db:	CERT/CC	id:	VU#566640	date:	2001-07-12T00:00:00
db:	CERT/CC	id:	VU#651994	date:	2001-05-16T00:00:00
db:	CERT/CC	id:	VU#315308	date:	2001-01-18T00:00:00
db:	BID	id:	5114	date:	2002-06-27T00:00:00
db:	CNNVD	id:	CNNVD-200505-1066	date:	2005-05-16T00:00:00
db:	NVD	id:	CVE-2005-1609	date:	2005-05-16T04:00:00