PT-2000-1323 · Cisco · Cisco Ios

Published

2000-04-26

Updated

2008-09-10

CVE-2000-0380

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 11.1 through 12.1

Description The issue affects the IOS HTTP service, allowing remote attackers to cause a denial of service by requesting a URL that contains a %% string.

Recommendations For versions 11.1 through 12.1, consider disabling the HTTP service until a patch is available. Restrict access to the HTTP service to minimize the risk of exploitation.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2000-0380

Affected Products

Cisco Ios

PT-2000-1323 · Cisco · Cisco Ios

CVE-2000-0380

Weakness Enumeration

Related Identifiers

Affected Products

References · 7