vulnerability

Cisco IOS: CVE-2002-1024: Scanning for SSH Can Cause a Crash

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:N/I:N/A:C)	Sep 26, 2017	Sep 26, 2017	Feb 18, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:C)

Published

Sep 26, 2017

Added

Sep 26, 2017

Modified

Feb 18, 2025

Description

Cisco IOS 12.0 through 12.2, when supporting SSH, allows remote attackers to cause a denial of service (CPU consumption) via a large packet that was designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144).

Solution

cisco-ios-upgrade-latest

References

BID-5114
CERT-VN-290140
CVE-2002-1024
https://attackerkb.com/topics/CVE-2002-1024
URL-https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020627-ssh-scan
XF-9437

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today