CVE-2000-0380

CVSS 2.0 Score 7.1 of 10 (high)

Details

Published Apr 26, 2000

Updated: Nov 20, 2024

CWE ID 20

Summary

CVE-2000-0380 is a denial-of-service vulnerability affecting Cisco IOS HTTP services in routers and switches running versions 11.1 through 12.1. An attacker can trigger the issue by sending a URL containing the %% string to the targeted device. This request causes an infinite loop in the HTTP processing, resulting in a denial-of-service condition. Network administrators are advised to upgrade their affected devices to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Cisco IOS

Affected Vendors

Cisco Systems Inc

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/LE7RIZ
https://www.cve.org/CVERecord?id=CVE-2000-0380
https://nvd.nist.gov/vuln/detail/CVE-2000-0380

Back to Vulnerability Database