Info

Disclosure

Oct 01, 1997

Discovery

Oct 01, 1997

Dates

Exploit

Unknown

Solution

Unknown

Description

IOS and IOS/700 contain a flaw that may allow a malicious user to establish unauthorized connections. The issue is triggered when an attacker exploits a flaw in IOS to bypass CHAP authentication. It is possible that the flaw may allow arbitrary PPP connections resulting in unauthorized network traffic.

Classification

Unknown or Incomplete

Solution

Upgrade to version indicated by Cisco product matrix, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Cisco Systems, Inc.	IOS	10.3
		11.0
		11.1
		11.2
		9.1
	IOS/700	4.1(1)

References

CVE ID: 1999-0160 (see also: NVD)
ISS X-Force ID: 570
Bugtraq ID: 693
Vendor Specific Advisory URL: http://www.cisco.com/warp/public/770/chapvuln-pub.shtml
Other Advisory URL: http://www.securityfocus.com/advisories/1423
CIAC Advisory: i-002a

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/1099

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

IOS

IOS/700

References

Credit