Vulnerabilities > CVE-1999-1175 - Unspecified vulnerability in Cisco IOS

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

cisco

nessus

NVD

Published: 1999-12-31

Updated: 2017-10-10

Summary

Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS \(4\)St Cisco IOS - Cisco IOS 3.3.0Se Cisco IOS 3.3.0Xo Cisco IOS 3.3.1Se Cisco IOS 3.3.1Xo Cisco IOS 3.3.2Se Cisco IOS 3.3.2Xo Cisco IOS 3.3.3Se Cisco IOS 3.3.4Se Cisco IOS 3.3.5Se Cisco IOS 3.5.0E Cisco IOS 3.5.1E Cisco IOS 3.5.2E Cisco IOS 3.5.3E Cisco IOS 3.6.0E Cisco IOS 3.6.1E Cisco IOS 3.6.2Ae Cisco IOS 3.6.2E Cisco IOS 3.6.3E Cisco IOS 3.6.4E Cisco IOS 3.7.0E Cisco IOS 3.7.1E Cisco IOS 3.7.2E Cisco IOS 3.7.3E Cisco IOS 3.16.8S Cisco IOS 4.1 Cisco IOS 4.1.1 Cisco IOS 4.1.2 Cisco IOS 8.2 Cisco IOS 8.3 Cisco IOS 9.0 Cisco IOS 9.1 Cisco IOS 9.14 Cisco IOS 10.0 Cisco IOS 10.3 Cisco IOS 10.3\(3.3\) Cisco IOS 10.3\(3.4\) Cisco IOS 10.3\(4.2\) Cisco IOS 10.3\(4.3\) Cisco IOS 10.3\(16\) Cisco IOS 10.3\(19A\) Cisco IOS 11 Cisco IOS 11.0 Cisco IOS 11.0\(12\) Cisco IOS 11.0\(17\) Cisco IOS 11.0\(17\)Bt Cisco IOS 11.0\(18\) Cisco IOS 11.0\(20.3\) Cisco IOS 11.0\(22A\) Cisco IOS 11.0\(22B\) Cisco IOS 11.0\(X\) Cisco IOS 11.0.12\(A\)Bt Cisco IOS 11.1 Cisco IOS 11.1\(5\) Cisco IOS 11.1\(7\) Cisco IOS 11.1\(7\)Aa Cisco IOS 11.1\(7\)Ca Cisco IOS 11.1\(9\)Ia Cisco IOS 11.1\(11\) Cisco IOS 11.1\(12\) Cisco IOS 11.1\(13\) Cisco IOS 11.1\(13\)Aa Cisco IOS 11.1\(13\)Ca Cisco IOS 11.1\(13\)Ia Cisco IOS 11.1\(14\) Cisco IOS 11.1\(15\) Cisco IOS 11.1\(15\)Aa Cisco IOS 11.1\(15\)Ca Cisco IOS 11.1\(15\)Ia Cisco IOS 11.1\(16\) Cisco IOS 11.1\(16\)Aa Cisco IOS 11.1\(16\)Ia Cisco IOS 11.1\(17\) Cisco IOS 11.1\(17\)Cc Cisco IOS 11.1\(17\)Ct Cisco IOS 11.1\(18\) Cisco IOS 11.1\(20\)Aa4 Cisco IOS 11.1\(22\) Cisco IOS 11.1\(24\) Cisco IOS 11.1\(24A\) Cisco IOS 11.1\(24B\) Cisco IOS 11.1\(24C\) Cisco IOS 11.1\(28A\)Ct Cisco IOS 11.1\(28A\)Ia Cisco IOS 11.1\(36\)Ca2 Cisco IOS 11.1\(36\)Ca4 Cisco IOS 11.1\(36\)Cc2 Cisco IOS 11.1\(36\)Cc4 Cisco IOS 11.1Aa Cisco IOS 11.1Ca Cisco IOS 11.1Cc Cisco IOS 11.1Ct Cisco IOS 11.1Ia Cisco IOS 11.2	95

Nessus

NASL family	CISCO
NASL id	CISCO-SA-19980513-WCCP-AUTH.NASL
description	The Web Cache Control Protocol (WCCP), available on Cisco devices, does not provide any authentication. A router configured to support Cache Engines will treat any host that sends it valid WCCP hello packets as a cache engine, and may divert HTTP traffic to that host. If a router is configured to use WCCP, an attacker can divert web traffic passing through such a router.
last seen	2020-06-01
modified	2020-06-02
plugin id	17778
published	2012-01-10
reporter	This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/17778
title	Cisco Web Cache Control Protocol Router Vulenrability

Summary

Vulnerable Configurations

Nessus

References