Cisco Cisco IOS Software Release 12.2

The packet must come from the source address of the designated system configured to send RCP 
packets to the router.

The packet must have a specific data content.

Workaround: Put access lists on the edge of your network blocking RCP packets to prevent spoofed 
RSH packets. Use another protocol such as SCP. Use VTY ACLs. 

Cisco IOS Release 12.2(28c) is a rebuild release for Cisco IOS Release 12.2(28). The caveats in this 
section are resolved in Cisco IOS Release 12.2(28c) but may be open in previous Cisco IOS releases.

The following information is provided for each caveat:

Symptoms: A description of what is observed when the caveat occurs. 

Conditions: The conditions under which the caveat has been known to occur. 

Workaround: Solutions, if available, to counteract the caveat. 

CSCsb26972

Symptoms: A Cisco router may experience a bus error crash. 

Conditions: This symptom may be triggered by an event such as an ISDN connection. 

Workaround: There is no workaround.

CSCei61732

Cisco IOS may permit arbitrary code execution after exploitation of a heap-based buffer overflow 
vulnerability. Cisco has included additional integrity checks in its software, as further described 
below, that are intended to reduce the likelihood of arbitrary code execution.

Cisco has made free software available that includes the additional integrity checks for affected 
customers.

This advisory is posted at 

Cisco IOS Release 12.2(28b) is a rebuild release for Cisco IOS Release 12.2(28). The caveats in this 
section are resolved in Cisco IOS Release 12.2(28b) but may be open in previous Cisco IOS releases.

The following information is provided for each caveat: