Vulnerabilities > CVE-2000-0984 - Unspecified vulnerability in Cisco IOS

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
cisco
nessus
exploit available

Summary

The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string.

Exploit-Db

descriptionCisco IOS 12 Software "?/" HTTP Request DoS Vulnerability. CVE-2000-0984. Dos exploit for hardware platform
idEDB-ID:20323
last seen2016-02-02
modified2000-10-25
published2000-10-25
reporterAlberto Solino
sourcehttps://www.exploit-db.com/download/20323/
titleCisco IOS 12 - Software "?/" HTTP Request DoS Vulnerability

Nessus

  • NASL familyCISCO
    NASL idCISCO-VIEW-SOURCE-DOS.NASL
    descriptionIt was possible to make the remote switch reboot by requesting : GET /cgi-bin/view-source?/ A remote attacker may use this flaw to prevent your network from working properly.
    last seen2020-06-01
    modified2020-06-02
    plugin id10682
    published2001-05-29
    reporterThis script is Copyright (C) 2001-2018 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/10682
    titleCisco IOS HTTP Server ?/ String Local DoS
  • NASL familyCISCO
    NASL idCISCO-SA-20001025-IOS-HTTP-SERVER-QUERYHTTP.NASL
    descriptionA defect in multiple releases of Cisco IOS software will cause a Cisco router or switch to halt and reload if the IOS HTTP service is enabled, browsing to
    last seen2020-06-01
    modified2020-06-02
    plugin id48950
    published2010-09-01
    reporterThis script is (C) 2010-2018 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/48950
    titleCisco IOS HTTP Server Query Vulnerability - Cisco Systems