cnvd - cnvd-2018-20258

cnvd-2018-20258

Vulnerability from cnvd

Title

Cisco Second Generation Integrated Services Routers和4451-X Integrated Services Router拒绝服务漏洞

Description

Cisco Second Generation Integrated Services Routers（ISR G2）和4451-X Integrated Services Router（ISR4451-X）都是美国思科（Cisco）公司的路由器产品。 Cisco ISR G2和ISR4451-X上的IOS和IOS XE Software中SM-1T3/E3固件存在拒绝服务漏洞，该漏洞源于程序未能正确的处理用户输入。远程攻击者可通过连接SM-1T3/E3模块控制器并输入字符串序列利用该漏洞造成ISR G2 Router或ISR4451-X上的SM-1T3/E3模块重新加载，导致拒绝服务。

Severity

高

Patch Name

Cisco Second Generation Integrated Services Routers和4451-X Integrated Services Router拒绝服务漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-sm1t3e3

Reference

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-sm1t3e3

Impacted products

Name
['Cisco ISR G2 routers', 'Cisco ISR4451-X']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-0485"
    }
  },
  "description": "Cisco Second Generation Integrated Services Routers\uff08ISR G2\uff09\u548c4451-X Integrated Services Router\uff08ISR4451-X\uff09\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u8def\u7531\u5668\u4ea7\u54c1\u3002\r\n\r\nCisco ISR G2\u548cISR4451-X\u4e0a\u7684IOS\u548cIOS XE Software\u4e2dSM-1T3/E3\u56fa\u4ef6\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u5904\u7406\u7528\u6237\u8f93\u5165\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8fde\u63a5SM-1T3/E3\u6a21\u5757\u63a7\u5236\u5668\u5e76\u8f93\u5165\u5b57\u7b26\u4e32\u5e8f\u5217\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210ISR G2 Router\u6216ISR4451-X\u4e0a\u7684SM-1T3/E3\u6a21\u5757\u91cd\u65b0\u52a0\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-sm1t3e3",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-20258",
  "openTime": "2018-09-30",
  "patchDescription": "Cisco Second Generation Integrated Services Routers\uff08ISR G2\uff09\u548c4451-X Integrated Services Router\uff08ISR4451-X\uff09\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u8def\u7531\u5668\u4ea7\u54c1\u3002\r\n\r\nCisco ISR G2\u548cISR4451-X\u4e0a\u7684IOS\u548cIOS XE Software\u4e2dSM-1T3/E3\u56fa\u4ef6\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u5904\u7406\u7528\u6237\u8f93\u5165\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8fde\u63a5SM-1T3/E3\u6a21\u5757\u63a7\u5236\u5668\u5e76\u8f93\u5165\u5b57\u7b26\u4e32\u5e8f\u5217\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210ISR G2 Router\u6216ISR4451-X\u4e0a\u7684SM-1T3/E3\u6a21\u5757\u91cd\u65b0\u52a0\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Second Generation Integrated Services Routers\u548c4451-X Integrated Services Router\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco ISR G2 routers",
      "Cisco ISR4451-X"
    ]
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-sm1t3e3",
  "serverity": "\u9ad8",
  "submitTime": "2018-09-30",
  "title": "Cisco Second Generation Integrated Services Routers\u548c4451-X Integrated Services Router\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

CVE-2018-0485 (GCVE-0-2018-0485)

Vulnerability from cvelistv5

Published

2018-10-05 14:00

Modified

2024-11-26 14:36

Severity ?

CWE

CWE-19

Summary

A vulnerability in the SM-1T3/E3 firmware on Cisco Second Generation Integrated Services Routers (ISR G2) and the Cisco 4451-X Integrated Services Router (ISR4451-X) could allow an unauthenticated, remote attacker to cause the ISR G2 Router or the SM-1T3/E3 module on the ISR4451-X to reload, resulting in a denial of service (DoS) condition on an affected device. The vulnerability is due to improper handling of user input. An attacker could exploit this vulnerability by first connecting to the SM-1T3/E3 module console and entering a string sequence. A successful exploit could allow the attacker to cause the ISR G2 Router or the SM-1T3/E3 module on the ISR4451-X to reload, resulting in a DoS condition on an affected device.

References

URL

Tags

	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-sm1t3e3	vendor-advisory, x_refsource_CISCO
	http://www.securitytracker.com/id/1041737	vdb-entry, x_refsource_SECTRACK
	http://www.securitytracker.com/id/1041736	vdb-entry, x_refsource_SECTRACK
	http://www.securityfocus.com/bid/105433	vdb-entry, x_refsource_BID