CVE-1999-1175

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 31, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1175 is a vulnerability affecting the Web Cache Control Protocol (WCCP) in Cisco Cache Engines for Cisco IOS 11.2 and earlier. This issue permits unauthenticated remote attackers to redirect HTTP traffic to arbitrary hosts by sending malicious WCCP packets to UDP port 2048. The lack of authentication in WCCP creates a serious security risk, allowing potential man-in-the-middle attacks and data interception. Attackers can exploit this vulnerability to manipulate web traffic and gain unauthorized access to sensitive information. Organizations using Cisco Cache Engines with Cisco IOS 11.2 and earlier versions are advised to upgrade to a patched version to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Cisco IOS

Affected Vendors

  • Cisco Systems Inc