Signature Detail

APP: Cisco CNS Network Registrar Denial of Service

This signature detects attempts to exploit a known vulnerability in the Cisco CNS Network Registrar. A successful attack can result in a denial-of-service condition.

Extended Description

Cisco CNS Network Registrar is a DNS/DHCP server offered by Cisco. It is available for Microsoft Windows, UNIX, and Linux platforms. Cisco CNS Network Registrar is reported prone to multiple remote denial of service vulnerabilities. These issues affect the Domain Name Service and Dynamic Host Configuration Protocol server components of the CNS Network Registrar. It is reported that an attacker may cause a crash by sending a specially crafted packet sequence to an affected server. These vulnerabilities only affect Cisco CNS Network Registrar for the Microsoft Windows platform. The first issue affects CNS Network Registrar versions 6.0 upto and including 6.1.1.3 and the second issue affects all versions including 6.1.1.3.

Affected Products

• Cisco CNS Network Registrar 6.0.0
• Cisco CNS Network Registrar 6.0.1
• Cisco CNS Network Registrar 6.0.2
• Cisco CNS Network Registrar 6.0.3
• Cisco CNS Network Registrar 6.0.4
• Cisco CNS Network Registrar 6.0.5
• Cisco CNS Network Registrar 6.0.5 .2
• Cisco CNS Network Registrar 6.0.5 .3
• Cisco CNS Network Registrar 6.0.5 .4
• Cisco CNS Network Registrar 6.1.0
• Cisco CNS Network Registrar 6.1.1
• Cisco CNS Network Registrar 6.1.1 .1
• Cisco CNS Network Registrar 6.1.1 .2
• Cisco CNS Network Registrar 6.1.1 .3
• Cisco Network Registar 6.1

References

• BugTraq: 11793
• CVE: CVE-2004-1164