Description
Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.1(0) to 4.1(2), 4.5(x), 4.0(0) to 4.0(2), and earlier versions, allows remote attackers to cause a denial of service (control card reset) via malformed SNMP packets.
Product(s):
- Cisco Optical Networking Systems Software (ONS) 1.0
- Cisco Optical Networking Systems Software (ONS) 1.1
- Cisco Optical Networking Systems Software (ONS) 1.1(0)
- Cisco Optical Networking Systems Software (ONS) 1.1(1)
- Cisco Optical Networking Systems Software (ONS) 1.3(0)
- Cisco Optical Networking Systems Software (ONS) 2.3(5)
- Cisco Optical Networking Systems Software (ONS) 3.0
- Cisco Optical Networking Systems Software (ONS) 3.1.0
- Cisco Optical Networking Systems Software (ONS) 3.2.0
- Cisco Optical Networking Systems Software (ONS) 3.2
- Cisco Optical Networking Systems Software (ONS) 3.3.0
- Cisco Optical Networking Systems Software (ONS) 3.4.0
- Cisco Optical Networking Systems Software (ONS) 4.0.0
- Cisco Optical Networking Systems Software (ONS) 4.0(0)
- Cisco Optical Networking Systems Software (ONS) 4.0 (1)
- Cisco Optical Networking Systems Software (ONS) 4.0 (2)
- Cisco Optical Networking Systems Software (ONS) 4.1(0)
- Cisco Optical Networking Systems Software (ONS) 4.1(1)
- Cisco Optical Networking Systems Software (ONS) 4.1(2)
- Cisco Optical Networking Systems Software (ONS) 4.1(3)
- Cisco Optical Networking Systems Software (ONS) 4.5
- Cisco Optical Networking Systems Software (ONS) 4.6(0)
- Cisco Optical Networking Systems Software (ONS) 4.6(1)
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2004-1434, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2004-1434 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.