Signature Detail

Short Name	DOS:NETDEV:CISCO-SYSLOG-DOS
Severity	Medium
Recommended	No
Category	DOS
Keywords	Cisco Syslog UDP Flood Denial of Service
Release Date	2004/03/31
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DOS: Cisco Syslog UDP Flood Denial of Service

This signature detects malformed syslog packets sent to a Cisco router. A successful attack can force the device to lose state of incoming packets, causing a denial of service against the IOS Firewall feature.

Extended Description

A vulnerability exists in Cisco IOS that is caused by improper handling of UDP packets sent to the Syslog port. This vulnerability allows an attacker to crash the router.

References

CVE: CVE-1999-0063
URL: http://www.cisco.com/warp/public/707/IOS-cbac-dynacl-pub.shtml

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

DOS: Cisco Syslog UDP Flood Denial of Service

Extended Description

References