The SISCO OSI stack, as used in SISCO MMS-EASE, ICCP Toolkit for MMS-EASE, AX-S4 MMS and AX-S4 ICCP, and possibly other control system applications, allows remote attackers to cause a denial of service (application termination and restart) via malformed packets.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ax-s4_iccp | Sisco | 3.0103 (including) | 3.0103 (including) |
| Ax-s4_iccp | Sisco | 3.0155 (including) | 3.0155 (including) |
| Ax-s4_mms | Sisco | 5.01 (including) | 5.01 (including) |
| Ax-s4_mms | Sisco | 5.02 (including) | 5.02 (including) |
| Iccp_toolkit | Sisco | 4.10_for_mms-ease (including) | 4.10_for_mms-ease (including) |
| Iccp_toolkit | Sisco | 5.03_for_mms-ease (including) | 5.03_for_mms-ease (including) |
| Iso_stack | Sisco | 3 (including) | 3 (including) |
| Mms-ease | Sisco | 7.10 (including) | 7.10 (including) |
| Mms-ease | Sisco | 8.03 (including) | 8.03 (including) |
References
- http://osvdb.org/32924
- http://secunia.com/advisories/23819
- http://www.kb.cert.org/vuls/id/145825
- http://www.kb.cert.org/vuls/id/MIMG-6TUHTT
- http://www.securityfocus.com/bid/22095
- http://www.vupen.com/english/advisories/2007/0237
- http://osvdb.org/32924
- http://secunia.com/advisories/23819
- http://www.kb.cert.org/vuls/id/145825
- http://www.kb.cert.org/vuls/id/MIMG-6TUHTT
- http://www.securityfocus.com/bid/22095
- http://www.vupen.com/english/advisories/2007/0237