12037: Cisco Routers HTTP %% All Versions Vulnerability (cisco-sa-20000514-ios-http-server)

Cisco Routers HTTP %% All Versions Vulnerability (cisco-sa-20000514-ios-http-server)

General Info

	TC:	12037
	Description:	It is possible to perform a denial of service on a cisco router with the http microserver feature enabled. By submitting a specially crafted request to the webserver running on a cisco router, a user can cause the router to crash. Some routers will automatically reboot, while others will require a power cycling to start routing packets again.
	TC Impact:	Denial of Service
	Service:	http

Specific Operations and Actions:

	Vulnerability Publication:	April 26, 2000
	Advisory Copyright:	Keith Woodworth
	Summary:	A remote attacker can prevent you from connecting onto your network.
	Risk:	High
	CVSS 2.0 metrics:	Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete
	CVSS 2.0 Base Score:	7.1

	Vulnerability Impact:	Denial of Service

	Host Impact:	Denial of service. Device reload.
	Nature of Remediation:	Update the software.

	Step required to fix the reported vulnerability:
	*** Solution type: Upgrade Software *** Check with Cisco which released patches for this issue. See references for more details.
	*** Solution type: Deploy Work Arounds *** Disable the web server on the router. The web server can be disabled via the command: no ip http server
	*** Solution type: Update Configuration *** Add ACLs to prevent access to this port, except for specific allowed hosts.

Glossary and References :

	References:
	* BUGTRAQ: 20000426 Cisco HTTP possible bug: http://archives.neohapsis.com/archives/bugtraq/2000-04/0261.html * CISCO: 20000514 Cisco IOS HTTP Server Vulnerability http://www.cisco.com/warp/public/707/ioshttpserver-pub.shtml * XF: cisco-ios-http-dos http://xforce.iss.net/xforce/xfdb/4357 * BID: 1154 http://www.securityfocus.com/bid/1154 * OSVDB: 1302 http://www.osvdb.org/1302 * MISC: http://www.securityfocus.com/advisories/2215 * MISC: http://www.securityfocus.com/archive/1/57363 * MISC: http://www.cisco.com/warp/public/707/sec_incident_response.shtml

	CVE Link:	CVE-2000-0380

	Glossary:	CISCO Denial of Service HTTP

© 2003-2010 NexantiS Corporation (www.securescout.com)
SecureScout is a trademark of NexantiS
All Rights Reserved
All products names referenced herein are trademarks of their respective companies

SecureScout products are certified:
CVE Compatible
SANS TOP 20 Compatible
CVSS Compatible (Common Vulnerability Scoring System)

	Step required to fix the reported vulnerability:
	*** Solution type: Upgrade Software *** Check with Cisco which released patches for this issue. See references for more details.
	*** Solution type: Deploy Work Arounds *** Disable the web server on the router. The web server can be disabled via the command: no ip http server
	*** Solution type: Update Configuration *** Add ACLs to prevent access to this port, except for specific allowed hosts.