CVE-2005-4258

3 documents3 sources

Severity

7.8HIGH

EPSS

0.7%

top 27.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Catalyst Cisco Catalyst 1900 Series Cisco Catalyst 2820 +12 more

Timeline

PublishedDec 15

Latest updateMay 1

Description

Unspecified Cisco Catalyst Switches allow remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (aka LanD). NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages15 packages

▶NVDcisco/catalyst4.5_\(10\), sup2plus, sup3+2

▶NVDcisco/catalyst_28209.0_0.07

▶NVDcisco/catalyst_2900lre_xl, xl+1

▶NVDcisco/catalyst_1900_series9.0_0.07

▶NVDcisco/catalyst_6000_ws-svc-nam-12.2\(1a\), 3.1\(1a\)+1

🔴Vulnerability Details

GHSA

GHSA-pc9g-xxwr-7rq9: Unspecified Cisco Catalyst Switches allow remote attackers to cause a denial of service (device crash) via an IP packet with the same source and desti↗2022-05-01

▶

CVEList

CVE-2005-4258: Unspecified Cisco Catalyst Switches allow remote attackers to cause a denial of service (device crash) via an IP packet with the same source and desti↗2005-12-15

▶