CiscoIOSHTTP%%拒絕服務(wù)漏洞

第第頁CiscoIOSHTTP%%拒絕服務(wù)漏洞CiscoIOSHTTP%%拒絕服務(wù)漏洞

發(fā)表于：2023-06-23來源：：點(diǎn)擊數(shù)：標(biāo)簽：

發(fā)布日期:2000-4-30更新日期:2000-4-30受影響的系統(tǒng):CiscoIOS12.0.7CiscoIOS12.0.6CiscoIOS12.0.5CiscoIOS12.0.4TCiscoIOS12.0.4SCiscoIOS12.0.4CiscoIOS12.0.3T2CiscoIOS12.0.2XGCiscoIOS12.0.2XFCiscoIOS12.0.2XDCisco

發(fā)布日期:2000-4-30

更新日期:2000-4-30

受影響的系統(tǒng):CiscoIOS12.0.7

CiscoIOS12.0.6

CiscoIOS12.0.5

CiscoIOS12.0.4T

CiscoIOS12.0.4S

CiscoIOS12.0.4

CiscoIOS12.0.3T2

CiscoIOS12.0.2XG

CiscoIOS12.0.2XF

CiscoIOS12.0.2XD

CiscoIOS12.0.2XC

CiscoIOS12.0.2

CiscoIOS12.0.1XE

CiscoIOS12.0.1XB

CiscoIOS12.0.1XA3

CiscoIOS12.0.1W

CiscoIOS12.0T

CiscoIOS12.0S

CiscoIOS12.0DB

CiscoIOS12.0(9)S

CiscoIOS12.0(8)

CiscoIOS12.0(7)T

CiscoIOS12.0(5)T1

CiscoIOS12.0

CiscoIOS11.3.1T

CiscoIOS11.3.1ED

CiscoIOS11.3.1

CiscoIOS11.3T

CiscoIOS11.3

CiscoIOS11.2.9XA

CiscoIOS11.2.9P

CiscoIOS11.2.8P

CiscoIOS11.2.8

CiscoIOS11.2.4F1

CiscoIOS11.2.10BC

CiscoIOS11.2.10

CiscoIOS11.2P

CiscoIOS11.2(17)

CiscoIOS11.2

CiscoIOS11.1

不受影響系統(tǒng):CiscoIOS12.1(1a)T1

CiscoIOS12.1(1.3)T

CiscoIOS11.2.8SA1

CiscoIOS11.0

描述:

許多種Cisco路由器都存在一個潛在的拒絕服務(wù)漏洞。如果這些路由器啟動了一個web服務(wù)器,用來對路由器進(jìn)行管理或者其他操作的話，（通常是通過添加"iphttpserver"類似的命令來啟動web服務(wù)的)攻擊者只要提交一個URL:http://victim.router/%%,就能導(dǎo)致路由器崩潰。

有些路由器會自動重起，有的則必須手工關(guān)閉電源并啟動才能使路由器恢復(fù)正常工作。

*>

建議:

Cisco公司已經(jīng)得知這個問題，并正著手進(jìn)行解決。

臨時解決方法：

1.禁止路由器啟動web服務(wù)器:

使用下列命令可以禁止web服務(wù)

noiphttp