25
Cisco 645 http get Denial of Service
Network devices
2003/11/14
Marc Ruef
marc dot ruef at computec dot ch
http://www.computec.ch
computec.ch
Marc Ruef
marc dot ruef at computec dot ch
http://www.computec.ch
computec.ch
2004/11/13
1.5
Corrected the plugin structure and added the accuracy values in 1.5
tcp
80
open|send GET ?\n\n|sleep 5|close|icmp_alive
50
Using this plugin can cause a denial of service of affected systems. Use this plugin with cause.
http://online.securityfocus.com/archive/1/147562
Cisco Systems
info at cisco dot com
http://www.cisco.com
Cisco 645
Other Cisco and network devices
Denial Of Service
The Cisco 675 is vulnerable to a remote Denial of Service attack. An attacker may crash the device by sending the HTTP request "GET ?" to the HTTP port tcp/80 of the router. You need to reboot the device to make it work again.
Upgrade your Cisco firmware and filter incoming traffic on port tcp/80. As workaround (disabling the web service) you could add the rule "set web disabled", "write" and "reboot" into your device.
20 minutes
Yes
http://www.nessus.org
Yes
No
High
7
8
8
7
High
Nessus is also able to do the same check.
CVE-2001-0058
460
10561
5626
Hacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427
http://www.cisco.com/warp/public/707/CBOS-multiple.shtml
