Details of VAR-200004-0028

ID

VAR-200004-0028

CVE

CVE-2000-0268

TITLE

Cisco IOS TELNET Environment Variable Handling Denial of Service Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200004-051

DESCRIPTION

Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot. Certain versions of Cisco's IOS software have a vulnerability in the Telnet Environment handling code. This attack can be launched repeatedly thereby effecting a Denial of Service attack. Cisco Internet Operating System (IOS) is an operating system used on CISCO routers. < *Link: http://www.cisco.com/warp/public/707/iostelnetopt-pub.shtml* >

Trust: 1.26

sources: NVD: CVE-2000-0268 // BID: 1123 // VULHUB: VHN-1847

AFFECTED PRODUCTS

vendor:	cisco	model:	ios	scope:	eq	version:	11.3aa	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(2\)xf	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(2\)xc	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(4\)t	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(4\)s	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(4\)	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(2\)	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(2\)xg	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(3\)t2	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(2\)xd	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(6\)	Trust: 1.0
vendor:	cisco	model:	as5200	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(7\)t	Trust: 1.0
vendor:	cisco	model:	accesspath	scope:	eq	version:	ls-3	Trust: 1.0
vendor:	cisco	model:	voice gateway as5800	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	7200 router	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	ubr7200	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	3660 router	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	system controller 3640	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	as5800	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	accesspath	scope:	eq	version:	ts-3	Trust: 1.0
vendor:	cisco	model:	accesspath	scope:	eq	version:	vs-3	Trust: 1.0
vendor:	cisco	model:	7500 router	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	as5300	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	7100 router	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(5\)	Trust: 1.0
vendor:	cisco	model:	voice gateway as5800	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	system controller sc3640	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0.7	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0.6	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0.5	Trust: 0.3
vendor:	cisco	model:	ios t	scope:	eq	version:	12.0.4	Trust: 0.3
vendor:	cisco	model:	ios s	scope:	eq	version:	12.0.4	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0.4	Trust: 0.3
vendor:	cisco	model:	ios t2	scope:	eq	version:	12.0.3	Trust: 0.3
vendor:	cisco	model:	ios xg	scope:	eq	version:	12.0.2	Trust: 0.3
vendor:	cisco	model:	ios xf	scope:	eq	version:	12.0.2	Trust: 0.3
vendor:	cisco	model:	ios xd	scope:	eq	version:	12.0.2	Trust: 0.3
vendor:	cisco	model:	ios xc	scope:	eq	version:	12.0.2	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.0.2	Trust: 0.3
vendor:	cisco	model:	ios 11.3aa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	cable router ubr7200	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	accesspath vs-3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	accesspath ts-3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	accesspath ls-3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	access server as5800	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	access server as5300	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	access server as5200	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	-	scope:	eq	version:	7500	Trust: 0.3
vendor:	cisco	model:	-	scope:	eq	version:	7200	Trust: 0.3
vendor:	cisco	model:	-	scope:	eq	version:	7100	Trust: 0.3

sources: BID: 1123 // CNNVD: CNNVD-200004-051 // NVD: CVE-2000-0268

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2000-0268
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200004-051
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-1847
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2000-0268
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-1847
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-1847 // CNNVD: CNNVD-200004-051 // NVD: CVE-2000-0268

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-0268

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200004-051

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-200004-051

EXTERNAL IDS

db:	BID	id:	1123	Trust: 2.0
db:	NVD	id:	CVE-2000-0268	Trust: 1.7
db:	OSVDB	id:	1289	Trust: 1.7
db:	CNNVD	id:	CNNVD-200004-051	Trust: 0.7
db:	NSFOCUS	id:	460	Trust: 0.6
db:	CISCO	id:	20000420 CISCO IOS SOFTWARE TELNET OPTION HANDLING VULNERABILITY	Trust: 0.6
db:	VULHUB	id:	VHN-1847	Trust: 0.1

sources: VULHUB: VHN-1847 // BID: 1123 // CNNVD: CNNVD-200004-051 // NVD: CVE-2000-0268

REFERENCES

url:	http://www.securityfocus.com/bid/1123	Trust: 1.7
url:	http://www.cisco.com/warp/public/707/iostelnetopt-pub.shtml	Trust: 1.7
url:	http://www.osvdb.org/1289	Trust: 1.7
url:	http://www.nsfocus.net/vulndb/460	Trust: 0.6
url:	http://www.cisco.com/warp/public/707/sec_incident_response.shtml	Trust: 0.3
url:	-	Trust: 0.1

sources: VULHUB: VHN-1847 // BID: 1123 // CNNVD: CNNVD-200004-051 // NVD: CVE-2000-0268

CREDITS

This vulnerability was originally discovered with a version of CyberCop Scanner from Network Associates. The public release of this information was in a Cisco security advisory posted to the Bugtraq mailing list on April 19, 2000.

Trust: 0.3

sources: BID: 1123

SOURCES

db:	VULHUB	id:	VHN-1847
db:	BID	id:	1123
db:	CNNVD	id:	CNNVD-200004-051
db:	NVD	id:	CVE-2000-0268

LAST UPDATE DATE

2024-08-14T15:25:52.521000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-1847	date:	2008-09-10T00:00:00
db:	BID	id:	1123	date:	2000-04-20T00:00:00
db:	CNNVD	id:	CNNVD-200004-051	date:	2006-08-28T00:00:00
db:	NVD	id:	CVE-2000-0268	date:	2008-09-10T19:03:47.867

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-1847	date:	2000-04-20T00:00:00
db:	BID	id:	1123	date:	2000-04-20T00:00:00
db:	CNNVD	id:	CNNVD-200004-051	date:	2000-04-20T00:00:00
db:	NVD	id:	CVE-2000-0268	date:	2000-04-20T04:00:00