Lucene search
CiscoCVELIST:CVE-2018-0470HistorySep 26, 2018 - 12:00 a.m.
CVE-2018-0470 Cisco IOS XE Software HTTP Denial of Service Vulnerability
2018-09-2600:00:00
CWE-399
cisco
www.cve.org
A vulnerability in the web framework of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a buffer overflow condition on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to the affected software improperly parsing malformed HTTP packets that are destined to a device. An attacker could exploit this vulnerability by sending a malformed HTTP packet to an affected device for processing. A successful exploit could allow the attacker to cause a buffer overflow condition on the affected device, resulting in a DoS condition.
CNA Affected
[
{
"product": "Cisco IOS XE Software",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
]Related
prion
prion
Buffer overflow
2018-10-05 14:29:00
cisco
cisco
Cisco IOS XE Software HTTP Denial of Service Vulnerability
2018-09-26 16:00:00
cve
cve
CVE-2018-0470
2018-10-05 14:29:04
nessus
nessus
Cisco IOS XE Software HTTP DoS Vulnerability (cisco-sa-20180926-webdos)
2018-10-05 00:00:00
nvd
nvd
CVE-2018-0470
2018-10-05 14:29:04
ics
ics
Rockwell Automation Stratix 5400/5410/5700/8000/8300 and ArmorStratix 5700
2019-04-05 12:00:00