Cisco Router Online Help Vulnerability
BID:1161
Info
Cisco Router Online Help Vulnerability
| Bugtraq ID: | 1161 |
| Class: | Access Validation Error |
| CVE: |
CVE-2000-0345 |
| Remote: | Yes |
| Local: | Yes |
| Published: | May 03 2000 12:00AM |
| Updated: | Jul 11 2009 01:56AM |
| Credit: | This bug was discovered and documented by Fernando Montenegro [email protected] and Claudio Silotto ([email protected]). The message detailing this vulnerability was sent to the Bugtraq mailing list on 2 May 2000. |
| Vulnerable: |
Cisco IOS 12.0.7 Cisco IOS 12.0.6 Cisco IOS 12.0.5 Cisco IOS 12.0.4 T Cisco IOS 12.0.4 S Cisco IOS 12.0.4 Cisco IOS 12.0.3 T2 Cisco IOS 12.0.2 XG Cisco IOS 12.0.2 XF Cisco IOS 12.0.2 XD Cisco IOS 12.0.2 XC Cisco IOS 12.0.2 Cisco IOS 12.0.1 XE Cisco IOS 12.0.1 XB Cisco IOS 12.0.1 XA3 Cisco IOS 12.0.1 W Cisco IOS 11.2.10 BC Cisco IOS 11.2.10 Cisco IOS 11.2.9 XA Cisco IOS 11.2.9 P Cisco IOS 11.2.8 SA5 Cisco IOS 11.2.8 SA3 Cisco IOS 11.2.8 SA1 Cisco IOS 11.2.8 P Cisco IOS 11.2.8 Cisco IOS 11.2.4 F1 Cisco IOS 11.1.17 CT Cisco IOS 11.1.17 CC Cisco IOS 11.1.16 IA Cisco IOS 11.1.16 AA Cisco IOS 11.1.16 Cisco IOS 11.1.15 CA Cisco IOS 11.1.13 IA Cisco IOS 11.1.13 CA Cisco IOS 11.1.13 AA Cisco IOS 11.1.13 Cisco IOS 9.14 Cisco IOS 12.0T Cisco IOS 12.0S Cisco IOS 12.0DB Cisco IOS 12.0(9)S Cisco IOS 12.0(8) Cisco IOS 12.0(7)T Cisco IOS 12.0(5)T1 Cisco IOS 12.0 Cisco IOS 11.2P Cisco IOS 11.2(17) Cisco IOS 11.2 Cisco IOS 11.1 Cisco HSRP 7500.0 Cisco HSRP 7200.0 Cisco HSRP 4000.0 Cisco HSRP 3600.0 Cisco HSRP 2600.0 Cisco HSRP 2500.0 Cisco 7500 Cisco 7200 Cisco 4000 Cisco 3600 Cisco 2600 Cisco 2500 |
| Not Vulnerable: | |
Solution / Fix
Cisco Router Online Help Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]. However in the original post to Bugtraq the author submits the following workaround and claims Cisco's Lisa Napier from Cisco Security validated the workaround as being sufficient.
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]. However in the original post to Bugtraq the author submits the following workaround and claims Cisco's Lisa Napier from Cisco Security validated the workaround as being sufficient.
References
Cisco Router Online Help Vulnerability
References:
References:
- Cisco Product Security Incident Response (Cisco Systems)