virus logo Intrusion Prevention

Cisco.IOS.Get.Request.DoS

description-logoDescription

This indicates an attack attempt against a denial of service (DoS) vulnerability in the IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 by requesting a URL that contains a %% string.

affected-products-logoAffected Products

Cisco IOS 12.0.7
Cisco IOS 12.0.6
Cisco IOS 12.0.5
Cisco IOS 12.0.4 T
Cisco IOS 12.0.4 S
Cisco IOS 12.0.4
Cisco IOS 12.0.3 T2
Cisco IOS 12.0.2 XG
Cisco IOS 12.0.2 XF
Cisco IOS 12.0.2 XD
Cisco IOS 12.0.2 XC
Cisco IOS 12.0.2
Cisco IOS 12.0.1 XE
Cisco IOS 12.0.1 XB
Cisco IOS 12.0.1 XA3
Cisco IOS 12.0.1 W
Cisco IOS 11.3.1 T
Cisco IOS 11.3.1 ED
Cisco IOS 11.3.1
Cisco IOS 11.2.10 BC
Cisco IOS 11.2.10
Cisco IOS 11.2.9 XA
Cisco IOS 11.2.9 P
Cisco IOS 11.2.8 P
Cisco IOS 11.2.8
Cisco IOS 11.2.4 F1
Cisco IOS 12.0T
Cisco IOS 12.0S
Cisco IOS 12.0DB
Cisco IOS 12.0(9)S
Cisco IOS 12.0(8)
Cisco IOS 12.0(7)T
Cisco IOS 12.0(5)T1
Cisco IOS 12.0
Cisco IOS 11.3T
Cisco IOS 11.3
Cisco IOS 11.2P
Cisco IOS 11.2(17)
Cisco IOS 11.2
Cisco IOS 11.1

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Refer to the vendor's web site for suggested workaround:
http://www.cisco.com/warp/public/707/ioshttpserver-pub.shtml

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 15978
Created Nov 20, 2008
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2000-0380
Exploit Prediction Score 95.97%
Default Action drop
Active
Affected OS Other
Affected App Cisco