CVE-2001-0537
First published: Sat Jul 21 2001(Updated: )
HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Puppet Cisco IOS | =11.3 | |
| Puppet Cisco IOS | =11.3aa | |
| Puppet Cisco IOS | =11.3da | |
| Puppet Cisco IOS | =11.3db | |
| Puppet Cisco IOS | =11.3ha | |
| Puppet Cisco IOS | =11.3ma | |
| Puppet Cisco IOS | =11.3na | |
| Puppet Cisco IOS | =11.3t | |
| Puppet Cisco IOS | =11.3xa | |
| Puppet Cisco IOS | =12.0 | |
| Puppet Cisco IOS | =12.0\(5\)xk | |
| Puppet Cisco IOS | =12.0\(7\)xk | |
| Puppet Cisco IOS | =12.0\(10\)w5\(18g\) | |
| Puppet Cisco IOS | =12.0\(14\)w5\(20\) | |
| Puppet Cisco IOS | =12.0da | |
| Puppet Cisco IOS | =12.0db | |
| Puppet Cisco IOS | =12.0dc | |
| Puppet Cisco IOS | =12.0s | |
| Puppet Cisco IOS | =12.0sc | |
| Puppet Cisco IOS | =12.0sl | |
| Puppet Cisco IOS | =12.0st | |
| Puppet Cisco IOS | =12.0t | |
| Puppet Cisco IOS | =12.0wc | |
| Puppet Cisco IOS | =12.0wt | |
| Puppet Cisco IOS | =12.0xa | |
| Puppet Cisco IOS | =12.0xb | |
| Puppet Cisco IOS | =12.0xc | |
| Puppet Cisco IOS | =12.0xd | |
| Puppet Cisco IOS | =12.0xe | |
| Puppet Cisco IOS | =12.0xf | |
| Puppet Cisco IOS | =12.0xg | |
| Puppet Cisco IOS | =12.0xh | |
| Puppet Cisco IOS | =12.0xi | |
| Puppet Cisco IOS | =12.0xj | |
| Puppet Cisco IOS | =12.0xl | |
| Puppet Cisco IOS | =12.0xm | |
| Puppet Cisco IOS | =12.0xn | |
| Puppet Cisco IOS | =12.0xp | |
| Puppet Cisco IOS | =12.0xq | |
| Puppet Cisco IOS | =12.0xr | |
| Puppet Cisco IOS | =12.0xs | |
| Puppet Cisco IOS | =12.0xu | |
| Puppet Cisco IOS | =12.0xv | |
| Puppet Cisco IOS | =12.1 | |
| Puppet Cisco IOS | =12.1aa | |
| Puppet Cisco IOS | =12.1cx | |
| Puppet Cisco IOS | =12.1da | |
| Puppet Cisco IOS | =12.1db | |
| Puppet Cisco IOS | =12.1dc | |
| Puppet Cisco IOS | =12.1e | |
| Puppet Cisco IOS | =12.1ec | |
| Puppet Cisco IOS | =12.1ex | |
| Puppet Cisco IOS | =12.1ey | |
| Puppet Cisco IOS | =12.1ez | |
| Puppet Cisco IOS | =12.1t | |
| Puppet Cisco IOS | =12.1xa | |
| Puppet Cisco IOS | =12.1xb | |
| Puppet Cisco IOS | =12.1xc | |
| Puppet Cisco IOS | =12.1xd | |
| Puppet Cisco IOS | =12.1xe | |
| Puppet Cisco IOS | =12.1xf | |
| Puppet Cisco IOS | =12.1xg | |
| Puppet Cisco IOS | =12.1xh | |
| Puppet Cisco IOS | =12.1xi | |
| Puppet Cisco IOS | =12.1xj | |
| Puppet Cisco IOS | =12.1xk | |
| Puppet Cisco IOS | =12.1xl | |
| Puppet Cisco IOS | =12.1xm | |
| Puppet Cisco IOS | =12.1xp | |
| Puppet Cisco IOS | =12.1xq | |
| Puppet Cisco IOS | =12.1xr | |
| Puppet Cisco IOS | =12.1xs | |
| Puppet Cisco IOS | =12.1xt | |
| Puppet Cisco IOS | =12.1xu | |
| Puppet Cisco IOS | =12.1xv | |
| Puppet Cisco IOS | =12.1xw | |
| Puppet Cisco IOS | =12.1xx | |
| Puppet Cisco IOS | =12.1xy | |
| Puppet Cisco IOS | =12.1xz | |
| Puppet Cisco IOS | =12.1ya | |
| Puppet Cisco IOS | =12.1yb | |
| Puppet Cisco IOS | =12.1yc | |
| Puppet Cisco IOS | =12.1yd | |
| Puppet Cisco IOS | =12.1yf | |
| Puppet Cisco IOS | =12.2 | |
| Puppet Cisco IOS | =12.2t | |
| Puppet Cisco IOS | =12.2xa | |
| Puppet Cisco IOS | =12.2xd | |
| Puppet Cisco IOS | =12.2xe | |
| Puppet Cisco IOS | =12.2xh | |
| Puppet Cisco IOS | =12.2xq |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/warp/public/707/IOS-httplevel-pub.html
- http://www.cert.org/advisories/CA-2001-14.html
- http://www.securityfocus.com/bid/2936
- http://www.securityfocus.com/archive/1/4.3.2.7.2.20010629095801.0c3e6a70@brussels.cisco.com
- http://www.securityfocus.com/archive/1/1601227034.20010702112207@olympos.org
- http://www.securityfocus.com/archive/1/Pine.LNX.3.96.1010702134611.22995B-100000@Lib-Vai.lib.asu.edu
- http://www.securityfocus.com/archive/1/20010703011650.60515.qmail@web14910.mail.yahoo.com
- http://www.ciac.org/ciac/bulletins/l-106.shtml
- http://www.osvdb.org/578
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6749
- http://www.securityfocus.com/archive/1/1601227034.20010702112207%40olympos.org
- http://www.securityfocus.com/archive/1/20010703011650.60515.qmail%40web14910.mail.yahoo.com
- http://www.securityfocus.com/archive/1/4.3.2.7.2.20010629095801.0c3e6a70%40brussels.cisco.com
- http://www.securityfocus.com/archive/1/Pine.LNX.3.96.1010702134611.22995B-100000%40Lib-Vai.lib.asu.edu
Frequently Asked Questions
What is the severity of CVE-2001-0537?
CVE-2001-0537 has been classified with a high severity level due to its potential to allow unauthorized command execution.
How do I fix CVE-2001-0537?
To fix CVE-2001-0537, it's recommended to update Cisco IOS to a version that addresses this vulnerability.
What types of software are affected by CVE-2001-0537?
CVE-2001-0537 affects various versions of Cisco IOS ranging from 11.3 to 12.2.
What can attackers achieve using CVE-2001-0537?
Attackers exploiting CVE-2001-0537 can bypass authentication and execute arbitrary commands on the affected Cisco devices.
Is CVE-2001-0537 still a risk for current systems?
Due to the age of the vulnerability, it is not widely considered a risk for modern systems, but systems running the affected versions should still be audited.
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/nvd-historical
- vendor/cisco
- product/ios
- canonical/cisco ios
- version/cisco ios/11.3
- version/cisco ios/11.3aa
- version/cisco ios/11.3da
- version/cisco ios/11.3db
- version/cisco ios/11.3ha
- version/cisco ios/11.3ma
- version/cisco ios/11.3na
- version/cisco ios/11.3t
- version/cisco ios/11.3xa
- version/cisco ios/12.0
- version/cisco ios/12.0\(5\)xk
- version/cisco ios/12.0\(7\)xk
- version/cisco ios/12.0\(10\)w5\(18g\)
- version/cisco ios/12.0\(14\)w5\(20\)
- version/cisco ios/12.0da
- version/cisco ios/12.0db
- version/cisco ios/12.0dc
- version/cisco ios/12.0s
- version/cisco ios/12.0sc
- version/cisco ios/12.0sl
- version/cisco ios/12.0st
- version/cisco ios/12.0t
- version/cisco ios/12.0wc
- version/cisco ios/12.0wt
- version/cisco ios/12.0xa
- version/cisco ios/12.0xb
- version/cisco ios/12.0xc
- version/cisco ios/12.0xd
- version/cisco ios/12.0xe
- version/cisco ios/12.0xf
- version/cisco ios/12.0xg
- version/cisco ios/12.0xh
- version/cisco ios/12.0xi
- version/cisco ios/12.0xj
- version/cisco ios/12.0xl
- version/cisco ios/12.0xm
- version/cisco ios/12.0xn
- version/cisco ios/12.0xp
- version/cisco ios/12.0xq
- version/cisco ios/12.0xr
- version/cisco ios/12.0xs
- version/cisco ios/12.0xu
- version/cisco ios/12.0xv
- version/cisco ios/12.1
- version/cisco ios/12.1aa
- version/cisco ios/12.1cx
- version/cisco ios/12.1da
- version/cisco ios/12.1db
- version/cisco ios/12.1dc
- version/cisco ios/12.1e
- version/cisco ios/12.1ec
- version/cisco ios/12.1ex
- version/cisco ios/12.1ey
- version/cisco ios/12.1ez
- version/cisco ios/12.1t
- version/cisco ios/12.1xa
- version/cisco ios/12.1xb
- version/cisco ios/12.1xc
- version/cisco ios/12.1xd
- version/cisco ios/12.1xe
- version/cisco ios/12.1xf
- version/cisco ios/12.1xg
- version/cisco ios/12.1xh
- version/cisco ios/12.1xi
- version/cisco ios/12.1xj
- version/cisco ios/12.1xk
- version/cisco ios/12.1xl
- version/cisco ios/12.1xm
- version/cisco ios/12.1xp
- version/cisco ios/12.1xq
- version/cisco ios/12.1xr
- version/cisco ios/12.1xs
- version/cisco ios/12.1xt
- version/cisco ios/12.1xu
- version/cisco ios/12.1xv
- version/cisco ios/12.1xw
- version/cisco ios/12.1xx
- version/cisco ios/12.1xy
- version/cisco ios/12.1xz
- version/cisco ios/12.1ya
- version/cisco ios/12.1yb
- version/cisco ios/12.1yc
- version/cisco ios/12.1yd
- version/cisco ios/12.1yf
- version/cisco ios/12.2
- version/cisco ios/12.2t
- version/cisco ios/12.2xa
- version/cisco ios/12.2xd
- version/cisco ios/12.2xe
- version/cisco ios/12.2xh
- version/cisco ios/12.2xq