Multiple vulnerabilities have been identified in Cisco Optical Networking System and Cisco Transport Controller, which could be exploited by remote attackers to cause a denial of service or execute arbitrary commands.
The first issue is due to errors in various management services that are susceptible to ACK denial of service (DoS) attacks, which could be exploited by remote attackers to cause the control cards on the network to exhaust memory resources and be unable to open any new socket connections.
The second flaw is due to an error when handling malformed IP packets sent to a device where secure mode for element management system (EMS)-to-network-element access is enabled (disabled by default), which could be exploited by attackers to reset the control cards.
The third vulnerability is due to an error when processing malformed IP packets, which could be exploited by attackers to reset the control cards.
The fourth issue is due to an error when handling malformed Open Shortest Path First (OSPF) packets, which could be exploited by attackers to reset the control cards.
The fifth vulnerability is due to an error in the Cisco Transport Controller (CTC) Launcher where insecure permissions are granted to any software originating from the codeBase or source at "http://*/fs/LAUNCHER.jar", which could be exploited by remote attackers or malicious web sites to execute arbitrary commands on a vulnerable CTC computer.
Credits
Vulnerabilities reported by the vendor
ChangeLog
2006-04-06 : Initial release
Vulnerability Management
Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.
French
