Intrusion Prevention

Cisco.CatOS.CiscoView.HTTP.Server.Buffer.Overflow

Description

This indicates an attack attempt against a Denial of Service vulnerability in Cisco Catalyst switch.
The vulnerability is caused by an error when the vulnerable software handles overly long http requests. It allows a remote attacker to crash vulnerable systems via sending a crafted HTTP request.

Affected Products

Cisco CatOS 7.4
Cisco CatOS 7.3
Cisco CatOS 6.1 (2)
Cisco CatOS 6.1
Cisco CatOS 5.5 (13a)
Cisco CatOS 5.5
Cisco CatOS 5.4

Impact

System Compromise: Remote attackers can crash vulnerable systems.

Recommended Actions

Refer to the vendor's web site for suggested workaround.
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20021016-catos-http-overflow

CVE References

CVE-2002-1222