CVE-2000-0380

CVSS 2.0 Score 7.1 of 10 (high)

Details

Published Apr 26, 2000
Updated: Nov 20, 2024
CWE ID 20

Summary

CVE-2000-0380 is a denial-of-service vulnerability affecting Cisco IOS HTTP services in routers and switches running versions 11.1 through 12.1. An attacker can trigger the issue by sending a URL containing the %% string to the targeted device. This request causes an infinite loop in the HTTP processing, resulting in a denial-of-service condition. Network administrators are advised to upgrade their affected devices to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Cisco IOS

Affected Vendors

  • Cisco Systems Inc