[原文]Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (card reset) via (1) a "crafted" IP packet to a device with secure mode EMS-to-network-element access, aka bug ID CSCsc51390; (2) a "crafted" IP packet to a device with IP on the LAN interface, aka bug ID CSCsd04168; and (3) a "malformed" OSPF packet, aka bug ID CSCsc54558.
Cisco ONS 15000 Series Crafted IP Packet DoS (CSCsc51390)
Remote / Network Access
Denial of Service
Loss of Availability
Cisco ONS 15000 platforms contain a flaw that may allow a remote denial of service against the device's control cards. The issue is triggered when a specially crafted IP packet is sent to control cards. This can result in a reset of the control cards on the platform, leading to a loss of availability. No further details have been provided.
Upgrade to the software versions released and detailed by the vendor, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.