Cisco IOS Software Overly Long GET Request Causes Buffer Overflow in HTTP Server

high Nessus Plugin ID 17787

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

The Cisco IOS HTTP server allows for a malformed HTTP request that contains two gigabytes of data. This could cause the router to reload with a buffer overflow condition. It may be exploited to execute arbitrary code on the router.

Note that the HTTP server must be enabled in order to exploit this flaw.

Solution

Apply the relevant patch referenced in Cisco Security Advisory cisc-sn-20030730-ios-2gb-get.

See Also

http://www.nessus.org/u?20f0415e

Plugin Details

Severity: High

ID: 17787

File Name: cisco-sn-20030730-ios-2gb-get.nasl

Version: 1.9

Type: local

Family: CISCO

Published: 1/10/2012

Updated: 8/9/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.6

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/o:cisco:ios

Required KB Items: Host/Cisco/IOS/Version

Patch Publication Date: 7/30/2003

Vulnerability Publication Date: 7/31/2003

Reference Information

CVE: CVE-2003-0647

CISCO-BUG-ID: CSCeb50339