Vulnerabilities > CVE-1999-1129 - Unspecified vulnerability in Cisco Catalyst 2900 Vlan and IOS

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

cisco

NVD

Published: 1999-09-01

Updated: 2017-12-19

Summary

Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS 11.2\(8\)Sa5	1
Hardware	Cisco Cisco Catalyst 2900 Vlan *	1

References

http://www.cisco.com/univercd/cc/td/doc/product/lan/28201900/1928v8x/eescg8x/aleakyv.htm
http://www.securityfocus.com/archive/1/26008
http://www.securityfocus.com/bid/615
https://exchange.xforce.ibmcloud.com/vulnerabilities/3294