Description
Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases.
Products
- Cisco IOS 11.0.20.3
- Cisco IOS 11.1.15 CA
- Cisco IOS 11.1(16)
- Cisco IOS 11.1.16 AA
- Cisco IOS 11.1.16 IA
- Cisco IOS 11.1.17 CC
- Cisco IOS 11.1.17 CT
- Cisco IOS 11.2.10
- Cisco IOS 11.2.10 BC
- Cisco IOS 11.2.8 SA3
- Cisco IOS 11.2.9 P
- Cisco IOS 11.2.9 XA
- Cisco IOS 11.3.1
- Cisco IOS 11.3.1 ED
- Cisco IOS 11.3.1 T
- Cisco IOS 9.1
Questions to Ask Vendors
- Can you confirm whether your systems are affected by CVE-1999-0159, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-1999-0159 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions
- Check out the advisory links provided below.
References