How to Buy
This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.
The remote device is missing a vendor-supplied security patch.
The Web Cache Control Protocol (WCCP), available on Cisco devices,
does not provide any authentication. A router configured to support
Cache Engines will treat any host that sends it valid WCCP hello
packets as a cache engine, and may divert HTTP traffic to that host.
If a router is configured to use WCCP, an attacker can divert web
traffic passing through such a router.
See also :
Apply the relevant patch referenced in Cisco Security Advisory
Risk factor :
High / CVSS Base Score : 7.5
Nessus Plugin ID: 17778 ()
CVE ID: CVE-1999-1175
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.