Denial of Service Vulnerability in SSHield on Cisco Content Services Switch
CVE-2007-4654

Currently unrated

Key Information:

Vendor: Cisco
Status: Webns; Openssh; Sshield
Vendor: CVE Published:; 4 September 2007

Summary

An unspecified vulnerability in SSHield version 1.6.1, when paired with OpenSSH 3.0.2p1 on specific Cisco Content Services Switch 11000 devices, can be exploited by remote attackers. This exploitation may result in denial of service, leading to connection slot exhaustion and potential system crashes due to large packet attacks that target the SSH CRC32 attack detection mechanism. This issue bears some similarities to other known vulnerabilities in earlier CVE identifiers, indicating a broader potential security impact.

References

http://osvdb.org/45873

vdb-entryx_refsource_OSVDB

http://securityreason.com/securityalert/3091

third-party-advisoryx_refsource_SREASON

https://exchange.xforce.ibmcloud.com/vulnerabilities/44542

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Sep 4, 2007
Vulnerability Reserved
Sep 4, 2007