PT-2011-2287 · Cisco · Cisco Ios
Publicado
2011-01-28
·
Atualizado
2017-08-17
·
CVE-2011-0348
CVSS v2.0
6.4
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco IOS versions 12.4(11)MD through 12.4(24)MD before 12.4(24)MD3
Cisco IOS versions 12.4(22)MDA before 12.4(22)MDA5
Cisco IOS versions 12.4(24)MDA before 12.4(24)MDA3
Description
The issue allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination.
Recommendations
For versions 12.4(11)MD through 12.4(24)MD before 12.4(24)MD3, update to version 12.4(24)MD3 or later.
For versions 12.4(22)MDA before 12.4(22)MDA5, update to version 12.4(22)MDA5 or later.
For versions 12.4(24)MDA before 12.4(24)MDA3, update to version 12.4(24)MDA3 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Ios