Vigil@nce - Cisco Catalyst 37x0, IOS: denial of service via login
August 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can authenticate quickly, in order to stop the
Catalyst 3750 or 3760 switch.
Severity: 1/4
Creation date: 07/08/2012
IMPACTED PRODUCTS
– Cisco Catalyst
– Cisco IOS
DESCRIPTION OF THE VULNERABILITY
On the web interface of Catalyst 3750 and 3760 switches, users can
enter their login/password, and then authenticate.
However, if this operation is done too quickly, the switch stops.
An attacker can therefore authenticate quickly, in order to stop
the Catalyst 3750 or 3760 switch.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-Catalyst-37x0-IOS-denial-of-service-via-login-11828