Buffer Overflow in Cisco Catalyst Switches Using CatOS
CVE-2002-1222

Currently unrated

Key Information:

Vendor: Cisco
Status: Catos
Vendor: CVE Published:; 28 October 2002

What is CVE-2002-1222?

The embedded HTTP server in Cisco Catalyst switches running CatOS versions 5.4 through 7.3 is vulnerable to a buffer overflow. This vulnerability occurs when the server does not properly handle long HTTP requests, allowing remote attackers to exploit this weakness to trigger a denial of service condition by resetting the device. This could lead to disruption in network services and impact the overall availability of the affected devices.

References

http://www.cisco.com/warp/public/707/catos-http-overflow-...

vendor-advisoryx_refsource_CISCO

http://www.iss.net/security_center/static/10382.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5976

vdb-entryx_refsource_BID

EPSS Score

16% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2002
Vulnerability Reserved
Oct 17, 2002