Cisco IOS 12.1 Large TCP Scan Denial of Service Vulnerability

IOS is the Internet Operating System, used on Cisco routers. It is distributed and maintained by Cisco.

Some versions of IOS may suffer from a denial of service condition when large port scans are performed through the vulnerable router. Reportedly, scanning a single host on all 65535 possible ports or scanning a class C network block for a single port are sufficient to exploit this vulnerability.

This vulnerability has been reported to exist on a Cisco 2611 router running IOS 12.1(6.5). Cisco has reported that they are unable to reproduce this problem. It is possible that this issue is the result of a configuration error or site specific conditions.


Privacy Statement
Copyright 2010, SecurityFocus