CVE-2002-1024

Description

Cisco IOS 12.0 through 12.2, when supporting SSH, allows remote attackers to cause a denial of service (CPU consumption) via a large packet that was designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144).

Affected products

• Cisco / catos6.2(0.110) – 6.2(0.110)
• Cisco / catos7.1 – 7.1
• Cisco / catos6.3(4) – 6.3(4)
• Cisco / catos6.3(0.7)pan – 6.3(0.7)pan
• Cisco / catos6.2(0.111) – 6.2(0.111)
• Cisco / catos7.1(2) – 7.1(2)
• Cisco / catos5.3(1)csx – 5.3(1)csx
• Cisco / catos5.3(1a)csx – 5.3(1a)csx
• Cisco / catos5.3(2)csx – 5.3(2)csx
• Cisco / catos5.3(3)csx – 5.3(3)csx
• Cisco / catos5.3(4)csx – 5.3(4)csx
• Cisco / catos5.3(5)csx – 5.3(5)csx
• Cisco / catos5.3(5a)csx – 5.3(5a)csx
• Cisco / catos5.3(6)csx – 5.3(6)csx
• Cisco / catos5.4 – 5.4
• Cisco / catos5.4(1) – 5.4(1)
• Cisco / catos5.4(2) – 5.4(2)
• Cisco / catos5.4(3) – 5.4(3)
• Cisco / catos5.4(4) – 5.4(4)
• Cisco / catos5.5 – 5.5
• Cisco / catos5.5(1) – 5.5(1)
• Cisco / catos5.5(2) – 5.5(2)
• Cisco / catos5.5(3) – 5.5(3)
• Cisco / catos5.5(4) – 5.5(4)
• Cisco / catos5.5(4a) – 5.5(4a)
• Cisco / catos5.5(4b) – 5.5(4b)
• Cisco / catos5.5(13) – 5.5(13)
• Cisco / catos6.1(1) – 6.1(1)
• Cisco / catos6.1(1a) – 6.1(1a)
• Cisco / catos6.1(1b) – 6.1(1b)
• Cisco / catos6.1(1c) – 6.1(1c)
• Cisco / catos6.1(2.13) – 6.1(2.13)
• Cisco / css11000_content_services_switch
• Cisco / IOS12.2b – 12.2b
• Cisco / IOS12.2bc – 12.2bc
• Cisco / IOS12.2da – 12.2da
• Cisco / IOS12.2dd – 12.2dd
• Cisco / IOS12.2s – 12.2s
• Cisco / IOS12.2t – 12.2t
• Cisco / IOS12.2xa – 12.2xa
• Cisco / IOS12.2xb – 12.2xb
• Cisco / IOS12.2xd – 12.2xd
• Cisco / IOS12.2xe – 12.2xe
• Cisco / IOS12.2xf – 12.2xf
• Cisco / IOS12.2xg – 12.2xg
• Cisco / IOS12.2xh – 12.2xh
• Cisco / IOS12.2xi – 12.2xi
• Cisco / IOS12.2xj – 12.2xj
• Cisco / IOS12.2xk – 12.2xk
• Cisco / IOS12.2xl – 12.2xl
• Cisco / IOS12.2xm – 12.2xm
• Cisco / IOS12.2xn – 12.2xn
• Cisco / IOS12.2xq – 12.2xq
• Cisco / IOS12.2xr – 12.2xr
• Cisco / IOS12.2xs – 12.2xs
• Cisco / IOS12.2xt – 12.2xt
• Cisco / IOS12.2xw – 12.2xw
• Cisco / IOS12.2ya – 12.2ya
• Cisco / IOS12.2yb – 12.2yb
• Cisco / IOS12.2yc – 12.2yc
• Cisco / IOS12.2yd – 12.2yd
• Cisco / IOS12.2yf – 12.2yf
• Cisco / IOS12.2yg – 12.2yg
• Cisco / IOS12.0s – 12.0s
• Cisco / IOS12.2yh – 12.2yh
• Cisco / IOS12.0sp – 12.0sp
• Cisco / IOS12.0st – 12.0st
• Cisco / IOS12.0xb – 12.0xb
• Cisco / IOS12.0xm – 12.0xm
• Cisco / IOS12.0xv – 12.0xv
• Cisco / IOS12.1(1)ex – 12.1(1)ex
• Cisco / IOS12.1(5c)ex – 12.1(5c)ex
• Cisco / IOS12.1(8a)ex – 12.1(8a)ex
• Cisco / IOS12.1(9)ex – 12.1(9)ex
• Cisco / IOS12.1e – 12.1e
• Cisco / IOS12.1ec – 12.1ec
• Cisco / IOS12.1t – 12.1t
• Cisco / IOS12.1xb – 12.1xb
• Cisco / IOS12.1xc – 12.1xc
• Cisco / IOS12.1xf – 12.1xf
• Cisco / IOS12.1xg – 12.1xg
• Cisco / IOS12.1xh – 12.1xh
• Cisco / IOS12.1xi – 12.1xi
• Cisco / IOS12.1xj – 12.1xj
• Cisco / IOS12.1xl – 12.1xl
• Cisco / IOS12.1xm – 12.1xm
• Cisco / IOS12.1xp – 12.1xp
• Cisco / IOS12.1xq – 12.1xq
• Cisco / IOS12.1xt – 12.1xt
• Cisco / IOS12.1xu – 12.1xu
• Cisco / IOS12.1yb – 12.1yb
• Cisco / IOS12.1yc – 12.1yc
• Cisco / IOS12.1yd – 12.1yd
• Cisco / IOS12.1ye – 12.1ye
• Cisco / IOS12.1yf – 12.1yf
• Cisco / IOS12.1yi – 12.1yi
• Cisco / IOS12.2 – 12.2
• Cisco / pix_firewall_software6.2 – 6.2
• Cisco / pix_firewall_software6.1 – 6.1
• Cisco / pix_firewall_software6.0 – 6.0
• Cisco / pix_firewall_software5.3 – 5.3
• Cisco / pix_firewall_software5.2 – 5.2

References

• MISChttp://www.securityfocus.com/bid/5114
• MISChttp://www.iss.net/security_center/static/9437.php
• MISChttp://www.kb.cert.org/vuls/id/290140
• VENDOR_ADVISORYhttp://www.cisco.com/warp/public/707/SSH-scanning.shtml