CVE-2005-2841
published 2005-09-08CVE-2005-2841: Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12.2ZH and 12.2ZL, 12.3 and 12.3T, and 12.4 and 12.4T allows…
PriorityP348high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
14.12%
96.1th percentile
Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12.2ZH and 12.2ZL, 12.3 and 12.3T, and 12.4 and 12.4T allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted user authentication credentials.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios_firewall | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow
vendor_cisco·2005-09-07
CVE-2005-2841 CWE-119 Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow
Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow
The Cisco IOS Firewall Authentication Proxy for FTP and/or Telnet
Sessions feature in specific versions of Cisco IOS software is vulnerable to a
remotely-exploitable buffer overflow condition.
Devices that do not support, or are not configured for Firewall
Authentication Proxy for FTP and/or Telnet Services are not affected.
Devices configured with only Authentication Proxy for HTTP and/or HTTPS
are not affected.
Only devices running certain versions of Cisco
IOS® are affected.
Cisco has made free software available to address this vulnerability.
There are workarounds available to mitigate the effects of the vulnerability.
This advisory will be posted at
https://sec.cloudapps.cisco.com/security/center/c
Cisco
Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow
vendor_cisco
CVE-2005-2841 Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow
CVE-2005-2841: Cisco IOS Firewall Authentication Proxy for FTP and Telnet Sessions Buffer Overflow
The Cisco IOS Firewall Authentication Proxy for FTP and/or Telnet Sessions feature in specific versions of Cisco IOS software is vulnerable to a remotely-exploitable buffer overflow condition. Devices that do not support, or are not configured for Firewall Authentication Proxy for FTP and/or Telnet Services are not affected. Devices configured with only Authentication Proxy for HTTP and/or HTTPS are not affected. Only devices running certain versions of Cisco IOS � are affected. Cisco has made free software available to address this vulnerability. There are
CWE: CWE-119, CWE-119
Bug IDs: CSCsa54608, CSCsa54608
GHSA
GHSA-gw7g-cgfh-x45p: Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12
ghsa_unreviewed·2022-05-01
CVE-2005-2841 [HIGH] GHSA-gw7g-cgfh-x45p: Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12
Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12.2ZH and 12.2ZL, 12.3 and 12.3T, and 12.4 and 12.4T allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted user authentication credentials.
No detection rules found.
No writeups or analysis indexed.
http://www.cisco.com/warp/public/707/cisco-sa-20050907-auth_proxy.shtmlhttp://www.kb.cert.org/vuls/id/236045http://www.vupen.com/english/advisories/2005/1669https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5317http://www.cisco.com/warp/public/707/cisco-sa-20050907-auth_proxy.shtmlhttp://www.kb.cert.org/vuls/id/236045http://www.vupen.com/english/advisories/2005/1669https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5317
2005-09-08
Published