A vulnerability in the Telnet feature of the Cisco Aggregation Services Router (ASR) 5000 Series could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition due to an unexpected telnetd process restart.

The vulnerability is due to flaws in the Telnet implementation. An attacker could exploit this vulnerability by using Telnet to connect remotely to the device. An exploit could allow the attacker to cause the telnetd process to unexpectedly restart and cause a partial DoS condition.

Cisco has not released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151125-asr5000

Leave a Reply