CVE-2000-0380
0
5
10
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Link copied!
Description
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
M
Confidentiality
None
Integrity
None
Availability
C
Affected Software Configurations
- o cisco ios 11.1 * * * * * * *
- o cisco ios 11.2 * * * * * * *
- o cisco ios 11.2\(4\)f1 * * * * * * *
- o cisco ios 11.2\(8\) * * * * * * *
- o cisco ios 11.2\(8\)p * * * * * * *
- o cisco ios 11.2\(9\)p * * * * * * *
- o cisco ios 11.2\(9\)xa * * * * * * *
- o cisco ios 11.2\(10\) * * * * * * *
- o cisco ios 11.2\(10\)bc * * * * * * *
- o cisco ios 11.2\(17\) * * * * * * *
Weaknesses (CWE)
- CWE-20
References & External Links
- http://archives.neohapsis.com/archives/bugtraq/2000-04/0261.html
- http://www.cisco.com/warp/public/707/ioshttpserver-pub.shtml
- http://www.osvdb.org/1302
- http://www.securityfocus.com/bid/1154
- http://archives.neohapsis.com/archives/bugtraq/2000-04/0261.html
- http://www.cisco.com/warp/public/707/ioshttpserver-pub.shtml
- http://www.osvdb.org/1302
- http://www.securityfocus.com/bid/1154