CVE-2004-1435
First published: Fri Dec 31 2004(Updated: )
Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5(x), 4.1(0) to 4.1(3), 4.0(0) to 4.0(2), and earlier versions, allows remote attackers to cause a denial of service (control card reset) via a large number of TCP connections with an invalid response instead of the final ACK (TCP-ACK).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Optical Network Controller | =1.0 | |
| Cisco Optical Network Controller | =1.1 | |
| Cisco Optical Network Controller | =1.1\(0\) | |
| Cisco Optical Network Controller | =1.1\(1\) | |
| Cisco Optical Network Controller | =1.3\(0\) | |
| Cisco Optical Network Controller | =2.3\(5\) | |
| Cisco Optical Network Controller | =3.0 | |
| Cisco Optical Network Controller | =3.1.0 | |
| Cisco Optical Network Controller | =3.2 | |
| Cisco Optical Network Controller | =3.2.0 | |
| Cisco Optical Network Controller | =3.3.0 | |
| Cisco Optical Network Controller | =3.4.0 | |
| Cisco Optical Network Controller | =4.0\(0\) | |
| Cisco Optical Network Controller | =4.0\(1\) | |
| Cisco Optical Network Controller | =4.0\(2\) | |
| Cisco Optical Network Controller | =4.0.0 | |
| Cisco Optical Network Controller | =4.1\(0\) | |
| Cisco Optical Network Controller | =4.1\(1\) | |
| Cisco Optical Network Controller | =4.1\(2\) | |
| Cisco Optical Network Controller | =4.1\(3\) | |
| Cisco Optical Network Controller | =4.5 | |
| Cisco Optical Network Controller | =4.6\(0\) | |
| Cisco Optical Network Controller | =4.6\(1\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2004-1435?
CVE-2004-1435 is classified as a denial of service vulnerability.
How do I fix CVE-2004-1435?
To fix CVE-2004-1435, upgrade to a version of Cisco Optical Networking software that is not affected by this vulnerability.
What software is affected by CVE-2004-1435?
CVE-2004-1435 affects multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH.
Can CVE-2004-1435 be exploited remotely?
Yes, an attacker can exploit CVE-2004-1435 remotely to cause a denial of service.
What is the impact of CVE-2004-1435?
The impact of CVE-2004-1435 includes the potential for controlled card resets leading to service disruptions.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/references
- agent/weakness
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/cisco
- canonical/cisco optical network controller
- version/cisco optical network controller/1.0
- version/cisco optical network controller/1.1
- version/cisco optical network controller/1.1\(0\)
- version/cisco optical network controller/1.1\(1\)
- version/cisco optical network controller/1.3\(0\)
- version/cisco optical network controller/2.3\(5\)
- version/cisco optical network controller/3.0
- version/cisco optical network controller/3.1.0
- version/cisco optical network controller/3.2
- version/cisco optical network controller/3.2.0
- version/cisco optical network controller/3.3.0
- version/cisco optical network controller/3.4.0
- version/cisco optical network controller/4.0\(0\)
- version/cisco optical network controller/4.0\(1\)
- version/cisco optical network controller/4.0\(2\)
- version/cisco optical network controller/4.0.0
- version/cisco optical network controller/4.1\(0\)
- version/cisco optical network controller/4.1\(1\)
- version/cisco optical network controller/4.1\(2\)
- version/cisco optical network controller/4.1\(3\)
- version/cisco optical network controller/4.5
- version/cisco optical network controller/4.6\(0\)
- version/cisco optical network controller/4.6\(1\)