CVE-2000-0380
published 2000-04-26CVE-2000-0380: The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that…
PriorityP427high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
35.00%
98.2th percentile
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
Affected
39 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect HTTP GET requests containing '%%' in the URL path targeting Cisco IOS HTTP service on port 80 ↗
- →Alert on GET requests for '/%%' specifically, as this exact path triggers the DoS on Cisco IOS 11.1 through 12.1 ↗
- →Confirmed vulnerable hardware includes Cisco 1600 Router running IOS v11.2(18)P; monitor for sudden unresponsiveness of HTTP service on such devices following a GET /%% ↗
- ·The vulnerability only applies when the IOS HTTP service is enabled on the router/switch; devices without the HTTP service running are not exposed ↗
- ·Affected IOS versions span 11.1 through 12.1; verify device IOS version before applying detection rules to avoid false positives on patched or out-of-range versions ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Cisco IOS 11.x/12.x - HTTP %%
exploitdb·2000-04-26
CVE-2000-0380 Cisco IOS 11.x/12.x - HTTP %%
Cisco IOS 11.x/12.x - HTTP %%
---
#source: https://www.securityfocus.com/bid/1154/info
#
#A denial of service attack exists in versions of Cisco IOS, running on a variety of different router hardware. If the router is configured to have a web server running for configuration and other information a user can cause the router to crash.
#
#!/usr/bin/perl
##
# Cisco Global Exploiter
#
# Legal notes :
# The BlackAngels staff refuse all responsabilities
# for an incorrect or illegal use of this software
# or for eventual damages to others systems.
#
# http://www.blackangels.it
##
##
# Modules
##
use Socket;
use IO::Socket;
##
# Main
##
$host = "";
$expvuln = "";
$host = @ARGV[ 0 ];
$expvuln = @ARGV[ 1 ];
if ($host eq "") {
usage();
}
if ($expvuln eq "") {
usage();
}
if ($expvuln eq "1
Metasploit
Cisco IOS HTTP GET /%% Request Denial of Service
metasploit
Cisco IOS HTTP GET /%% Request Denial of Service
Cisco IOS HTTP GET /%% Request Denial of Service
This module triggers a Denial of Service condition in the Cisco IOS HTTP server. By sending a GET request for "/%%", the device becomes unresponsive. IOS 11.1 -> 12.1 are reportedly vulnerable. This module tested successfully against a Cisco 1600 Router IOS v11.2(18)P.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2000-04/0261.htmlhttp://www.cisco.com/warp/public/707/ioshttpserver-pub.shtmlhttp://www.osvdb.org/1302http://www.securityfocus.com/bid/1154http://archives.neohapsis.com/archives/bugtraq/2000-04/0261.htmlhttp://www.cisco.com/warp/public/707/ioshttpserver-pub.shtmlhttp://www.osvdb.org/1302http://www.securityfocus.com/bid/1154
2000-04-26
Published