ISS X-Force Database: cisco-ios-http-dos(4357): Cisco IOS routers denial of service caused by HTTP commands

Cisco IOS routers denial of service caused by HTTP commands

cisco-ios-http-dos (4357)

Medium Risk

Description:

The Cisco IOS operating system found on many Cisco routers is vulnerable to a denial of service attack if the HTTP server is enabled. By sending a specially-crafted URL to the router (in the form of http://<router_ip>/%%), a remote attacker can crash the router. This attack will cause the router to restart and could also require that the router be manually powered down and restarted.

Consequences:

Denial of Service

Remedy:

Install the appropriate patch or disable the HTTP server on the router, as listed in Cisco Systems Field Notice, May 14, 2000. See References.

References:

BugTraq Mailing List, Wed Apr 26 2000 - 22:24:07 CDT: Cisco HTTP possible bug:.
Cisco Security Notice 2004 March 27 19:30 UTC: Exploit for Multiple Cisco Vulnerabilities.
Cisco Systems Field Notice, May 14, 2000: Cisco IOS HTTP Server Vulnerability.
SecuriTeam Mailing List, Security Holes & Exploits 25 Mar 2004: Multiple Cisco Exploit Codes.
BID-1154: Cisco IOS HTTP %% Vulnerability
CVE-2000-0380: The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
OSVDB ID: 1302: Cisco IOS DoS With HTTP GET Containing %%
US-CERT VU#24346: Cisco IOS software vulnerable to DoS via HTTP request containing %%

Platforms Affected:

Cisco IOS 11.1
Cisco IOS 11.2
Cisco IOS 11.2(10)
Cisco IOS 11.2(10)BC
Cisco IOS 11.2(17)
Cisco IOS 11.2(4)F1
Cisco IOS 11.2(8)
Cisco IOS 11.2(8)P
Cisco IOS 11.2(9)P
Cisco IOS 11.2(9)XA
Cisco IOS 11.2P
Cisco IOS 11.3
Cisco IOS 11.3(1)
Cisco IOS 11.3(1)ED
Cisco IOS 11.3(1)T
Cisco IOS 11.3T
Cisco IOS 12.0
Cisco IOS 12.0(1)W
Cisco IOS 12.0(1)XA3
Cisco IOS 12.0(1)XB
Cisco IOS 12.0(1)XE
Cisco IOS 12.0(2)
Cisco IOS 12.0(2)XC
Cisco IOS 12.0(2)XD
Cisco IOS 12.0(2)XF
Cisco IOS 12.0(2)XG
Cisco IOS 12.0(3)T2
Cisco IOS 12.0(4)
Cisco IOS 12.0(4)S
Cisco IOS 12.0(4)T
Cisco IOS 12.0(5)
Cisco IOS 12.0(5)T1
Cisco IOS 12.0(6)
Cisco IOS 12.0(7)
Cisco IOS 12.0(7)T
Cisco IOS 12.0(8)
Cisco IOS 12.0(9)S
Cisco IOS 12.0DB
Cisco IOS 12.0S
Cisco IOS 12.0T

Reported:

Apr 26, 2000

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page