CVE-2004-0551

3 documents3 sources

Severity

5.0MEDIUM

EPSS

0.6%

top 29.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Catalyst 6000 Ws-svc-nam-1 Cisco Catalyst 6000 Ws-svc-nam-2 Cisco Catalyst 6000 Ws-x6380-nam +1 more

Timeline

PublishedAug 6

Latest updateApr 29

Description

Cisco CatOS 5.x before 5.5(20) through 8.x before 8.2(2) and 8.3(2)GLX, as used in Catalyst switches, allows remote attackers to cause a denial of service (system crash and reload) by sending invalid packets instead of the final ACK portion of the three-way handshake to the (1) Telnet, (2) HTTP, or (3) SSH services, aka "TCP-ACK DoS attack."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

▶NVDcisco/catos212 versions+211

▶NVDcisco/catalyst_6000_ws-svc-nam-12.2\(1a\), 3.1\(1a\)+1

▶NVDcisco/catalyst_6000_ws-svc-nam-22.2\(1a\), 3.1\(1a\)+1

▶NVDcisco/catalyst_6000_ws-x6380-nam2.1\(2\), 3.1\(1a\)+1

🔴Vulnerability Details

GHSA

GHSA-cq5p-fgmw-rvxv: Cisco CatOS 5↗2022-04-29

▶

CVEList

CVE-2004-0551: Cisco CatOS 5↗2004-06-15

▶