Signature Detail
Short Name |
HTTP:CISCO:IOS-ERROR-DOS |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
Cisco IOS Software HTTP Request Denial of Service Test Probe |
Release Date |
2013/01/30 |
Update Number |
2229 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Cisco IOS Software HTTP Request Denial of Service Test Probe
This signature detects IPS testing tools trying to incorrectly demonstrate the Symantec LiveUpdate Administrator CSRF Vulnerability. Actual exploit attempts against this vulnerability are properly detected with DOS:NETDEV:CISCO-HTTPD-DOS.
Extended Description
A denial of service attack exists in versions of Cisco IOS, running on a variety of different router hardware. If the router is configured to have a web server running for configuration and other information a user can cause the router to crash.
Affected Products
- Cisco IOS 11.1
- Cisco IOS 11.2
- Cisco IOS 11.2.10
- Cisco IOS 11.2.10BC
- Cisco IOS 11.2(17)
- Cisco IOS 11.2.4F1
- Cisco IOS 11.2.8
- Cisco IOS 11.2.8P
- Cisco IOS 11.2.9P
- Cisco IOS 11.2.9XA
- Cisco IOS 11.2P
- Cisco IOS 11.3
- Cisco IOS 11.3.1
- Cisco IOS 11.3.1ED
- Cisco IOS 11.3.1T
- Cisco IOS 11.3T
- Cisco IOS 12.0
- Cisco IOS 12.0.1W
- Cisco IOS 12.0.1XA3
- Cisco IOS 12.0.1XB
- Cisco IOS 12.0.1XE
- Cisco IOS 12.0.2
- Cisco IOS 12.0.2XC
- Cisco IOS 12.0.2XD
- Cisco IOS 12.0.2XF
- Cisco IOS 12.0.2XG
- Cisco IOS 12.0.3T2
- Cisco IOS 12.0.4
- Cisco IOS 12.0.4S
- Cisco IOS 12.0.4T
- Cisco IOS 12.0.5
- Cisco IOS 12.0(5)T1
- Cisco IOS 12.0.6
- Cisco IOS 12.0.7
- Cisco IOS 12.0(7)T
- Cisco IOS 12.0(8)
- Cisco IOS 12.0(9)S
- Cisco IOS 12.0DB
- Cisco IOS 12.0S
- Cisco IOS 12.0T
References
- BugTraq: 1154
- CVE: CVE-2000-0380