CVE-2010-0137 | Vulnerability Database | Aqua Security

Unspecified vulnerability in the sshd_child_handler process in the SSH server in Cisco IOS XR 3.4.1 through 3.7.0 allows remote attackers to cause a denial of service (process crash and memory consumption) via a crafted SSH2 packet, aka Bug ID CSCsu10574.

Affected Software

Name	Vendor	Start Version	End Version
Ios_xr	Cisco	3.4.1 (including)	3.4.1 (including)
Ios_xr	Cisco	3.4.2 (including)	3.4.2 (including)
Ios_xr	Cisco	3.4.3 (including)	3.4.3 (including)
Ios_xr	Cisco	3.5.2 (including)	3.5.2 (including)
Ios_xr	Cisco	3.5.3 (including)	3.5.3 (including)
Ios_xr	Cisco	3.5.4 (including)	3.5.4 (including)
Ios_xr	Cisco	3.6.0 (including)	3.6.0 (including)
Ios_xr	Cisco	3.6.1 (including)	3.6.1 (including)
Ios_xr	Cisco	3.7.0 (including)	3.7.0 (including)

References

http://secunia.com/advisories/38227
http://securitytracker.com/id?1023480
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b13512.shtml
http://www.securityfocus.com/bid/37878
http://www.vupen.com/english/advisories/2010/0183
https://exchange.xforce.ibmcloud.com/vulnerabilities/55767

NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-0137
CWE	https://cwe.mitre.org/data/definitions/.html