Cisco.IOS.Get.Request.DoS
Description
This indicates an attack attempt against a denial of service (DoS) vulnerability in the IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 by requesting a URL that contains a %% string.
Affected Products
Cisco IOS 12.0.7
Cisco IOS 12.0.6
Cisco IOS 12.0.5
Cisco IOS 12.0.4 T
Cisco IOS 12.0.4 S
Cisco IOS 12.0.4
Cisco IOS 12.0.3 T2
Cisco IOS 12.0.2 XG
Cisco IOS 12.0.2 XF
Cisco IOS 12.0.2 XD
Cisco IOS 12.0.2 XC
Cisco IOS 12.0.2
Cisco IOS 12.0.1 XE
Cisco IOS 12.0.1 XB
Cisco IOS 12.0.1 XA3
Cisco IOS 12.0.1 W
Cisco IOS 11.3.1 T
Cisco IOS 11.3.1 ED
Cisco IOS 11.3.1
Cisco IOS 11.2.10 BC
Cisco IOS 11.2.10
Cisco IOS 11.2.9 XA
Cisco IOS 11.2.9 P
Cisco IOS 11.2.8 P
Cisco IOS 11.2.8
Cisco IOS 11.2.4 F1
Cisco IOS 12.0T
Cisco IOS 12.0S
Cisco IOS 12.0DB
Cisco IOS 12.0(9)S
Cisco IOS 12.0(8)
Cisco IOS 12.0(7)T
Cisco IOS 12.0(5)T1
Cisco IOS 12.0
Cisco IOS 11.3T
Cisco IOS 11.3
Cisco IOS 11.2P
Cisco IOS 11.2(17)
Cisco IOS 11.2
Cisco IOS 11.1
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Refer to the vendor's web site for suggested workaround:
http://www.cisco.com/warp/public/707/ioshttpserver-pub.shtml
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |