CVE-2011-0348
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917.
Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD antes de 12.4(24)MD3, 12.4(22)MDA anterior a 12.4(22)MDA5, y 12.4(24)MDA anterior a 12.4(24)MDA3 en el Cisco Content Services Gateway de segunda generación (también conocido como CSG2) permite a atacantes remotos evitar las restricciones de acceso establecidas y restricciones de facturación mediante el envío de tráfico HTTP a un destino restringido después de enviar el tráfico HTTP a un destino sin restricciones, también conocido como Bug ID CSCtk35917.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2011-01-07 CVE Reserved
- 2011-01-28 CVE Published
- 2024-08-06 CVE Updated
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/70720 | Vdb Entry | |
| http://securitytracker.com/id?1024992 | Vdb Entry | |
| http://www.securityfocus.com/bid/46022 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2011/0229 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/64936 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/43052 | 2017-08-17 | |
| http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6791d.shtml | 2017-08-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4\(11\)md Search vendor "Cisco" for product "Ios" and version "12.4\(11\)md" | - |
Affected
| in | Cisco Search vendor "Cisco" | Content Services Gateway Second Generation Search vendor "Cisco" for product "Content Services Gateway Second Generation" | * | - |
Safe
|
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4\(15\)md Search vendor "Cisco" for product "Ios" and version "12.4\(15\)md" | - |
Affected
| in | Cisco Search vendor "Cisco" | Content Services Gateway Second Generation Search vendor "Cisco" for product "Content Services Gateway Second Generation" | * | - |
Safe
|
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4\(22\)md Search vendor "Cisco" for product "Ios" and version "12.4\(22\)md" | - |
Affected
| in | Cisco Search vendor "Cisco" | Content Services Gateway Second Generation Search vendor "Cisco" for product "Content Services Gateway Second Generation" | * | - |
Safe
|
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4\(22\)mda Search vendor "Cisco" for product "Ios" and version "12.4\(22\)mda" | - |
Affected
| in | Cisco Search vendor "Cisco" | Content Services Gateway Second Generation Search vendor "Cisco" for product "Content Services Gateway Second Generation" | * | - |
Safe
|
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4\(24\)md Search vendor "Cisco" for product "Ios" and version "12.4\(24\)md" | - |
Affected
| in | Cisco Search vendor "Cisco" | Content Services Gateway Second Generation Search vendor "Cisco" for product "Content Services Gateway Second Generation" | * | - |
Safe
|
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4\(24\)md1 Search vendor "Cisco" for product "Ios" and version "12.4\(24\)md1" | - |
Affected
| in | Cisco Search vendor "Cisco" | Content Services Gateway Second Generation Search vendor "Cisco" for product "Content Services Gateway Second Generation" | * | - |
Safe
|
| Cisco Search vendor "Cisco" | Ios Search vendor "Cisco" for product "Ios" | 12.4\(24\)mda Search vendor "Cisco" for product "Ios" and version "12.4\(24\)mda" | - |
Affected
| in | Cisco Search vendor "Cisco" | Content Services Gateway Second Generation Search vendor "Cisco" for product "Content Services Gateway Second Generation" | * | - |
Safe
|