CVE-2011-0348 - OpenCVE

Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Content Services Gateway Second Generation Ios

Configuration 1 [-]

AND

OR	cpe:2.3:o:cisco:ios:12.4\(11\)md:::::::*
	cpe:2.3:o:cisco:ios:12.4\(15\)md:::::::*
	cpe:2.3:o:cisco:ios:12.4\(22\)md:::::::*
	cpe:2.3:o:cisco:ios:12.4\(22\)mda:::::::*
	cpe:2.3:o:cisco:ios:12.4\(24\)md:::::::*
	cpe:2.3:o:cisco:ios:12.4\(24\)md1:::::::*
	cpe:2.3:o:cisco:ios:12.4\(24\)mda:::::::*

cpe:2.3:h:cisco:content_services_gateway_second_generation:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/70720
http://secunia.com/advisories/43052
http://securitytracker.com/id?1024992
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6791d.shtml
http://www.securityfocus.com/bid/46022
http://www.vupen.com/english/advisories/2011/0229
https://exchange.xforce.ibmcloud.com/vulnerabilities/64936

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2011-01-28T21:13:00

Updated: 2024-08-06T21:51:07.858Z

Reserved: 2011-01-07T00:00:00

Link: CVE-2011-0348

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-01-28T22:00:05.787

Modified: 2017-08-17T01:33:27.277

Link: CVE-2011-0348

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-01-26T00:00:00", "descriptions": [{"lang": "en", "value": "Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "46022", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/46022"}, {"name": "ADV-2011-0229", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0229"}, {"name": "20110126 Cisco Content Services Gateway Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6791d.shtml"}, {"name": "70720", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/70720"}, {"name": "43052", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/43052"}, {"name": "1024992", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1024992"}, {"name": "cisco-csg2-policy-security-bypass(64936)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64936"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2011-0348", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "46022", "refsource": "BID", "url": "http://www.securityfocus.com/bid/46022"}, {"name": "ADV-2011-0229", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0229"}, {"name": "20110126 Cisco Content Services Gateway Vulnerabilities", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6791d.shtml"}, {"name": "70720", "refsource": "OSVDB", "url": "http://osvdb.org/70720"}, {"name": "43052", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43052"}, {"name": "1024992", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1024992"}, {"name": "cisco-csg2-policy-security-bypass(64936)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64936"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:51:07.858Z"}, "title": "CVE Program Container", "references": [{"name": "46022", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/46022"}, {"name": "ADV-2011-0229", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0229"}, {"name": "20110126 Cisco Content Services Gateway Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6791d.shtml"}, {"name": "70720", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/70720"}, {"name": "43052", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/43052"}, {"name": "1024992", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1024992"}, {"name": "cisco-csg2-policy-security-bypass(64936)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64936"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2011-0348", "datePublished": "2011-01-28T21:13:00", "dateReserved": "2011-01-07T00:00:00", "dateUpdated": "2024-08-06T21:51:07.858Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:12.4\\(11\\)md:*:*:*:*:*:*:*", "matchCriteriaId": "92AD4889-F6B6-4497-A589-8632A1850965", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(15\\)md:*:*:*:*:*:*:*", "matchCriteriaId": "DE0233F4-AA5D-47C3-934A-4BA793DD4A2E", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(22\\)md:*:*:*:*:*:*:*", "matchCriteriaId": "498A43E2-5A03-46C9-B60D-8E7CE79F1705", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(22\\)mda:*:*:*:*:*:*:*", "matchCriteriaId": "6EB30791-A691-42DD-8714-B173242EDBBF", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(24\\)md:*:*:*:*:*:*:*", "matchCriteriaId": "539454C8-EA90-4146-9429-72465CF555FE", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(24\\)md1:*:*:*:*:*:*:*", "matchCriteriaId": "4E44F5F4-D7FE-4B9C-BA65-2365EF7A8092", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.4\\(24\\)mda:*:*:*:*:*:*:*", "matchCriteriaId": "D0F2A946-AD8A-4644-8630-5951B66E4B34", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:content_services_gateway_second_generation:*:*:*:*:*:*:*:*", "matchCriteriaId": "A7759766-DE4B-42DE-BFB9-0EA6E08C89F6", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917."}, {"lang": "es", "value": "Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD antes de 12.4(24)MD3, 12.4(22)MDA anterior a 12.4(22)MDA5, y 12.4(24)MDA anterior a 12.4(24)MDA3 en el Cisco Content Services Gateway de segunda generaci\u00f3n (tambi\u00e9n conocido como CSG2) permite a atacantes remotos evitar las restricciones de acceso establecidas y restricciones de facturaci\u00f3n mediante el env\u00edo de tr\u00e1fico HTTP a un destino restringido despu\u00e9s de enviar el tr\u00e1fico HTTP a un destino sin restricciones, tambi\u00e9n conocido como Bug ID CSCtk35917."}], "id": "CVE-2011-0348", "lastModified": "2017-08-17T01:33:27.277", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-01-28T22:00:05.787", "references": [{"source": "ykramarz@cisco.com", "url": "http://osvdb.org/70720"}, {"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/43052"}, {"source": "ykramarz@cisco.com", "url": "http://securitytracker.com/id?1024992"}, {"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6791d.shtml"}, {"source": "ykramarz@cisco.com", "url": "http://www.securityfocus.com/bid/46022"}, {"source": "ykramarz@cisco.com", "url": "http://www.vupen.com/english/advisories/2011/0229"}, {"source": "ykramarz@cisco.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64936"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}