Cisco Systems AS5200 Caveats

Release Notes for CiscoAS5200 Universal Access Servers for Cisco IOS Release 11.2 P

78-5214-15 Rev. A0

Caveats

A defect in multiple releases of Cisco IOS software will cause a Cisco router or switch to halt and reload

if the IOS HTTP service is enabled, browsing to http://router-ip/anytext?/ is attempted, and the enable

password is supplied when requested. This defect can be exploited to produce a denial of service (DoS)

attack.

The vulnerability, identified as Cisco caveat CSCdr91706, affects virtually all mainstream Cisco routers

and switches running Cisco IOS software releases 12.0 through 12.1, inclusive. This is not the same

defect as CSCdr36952.

The vulnerability has been corrected and Cisco is making fixed releases available for free to replace all

affected Cisco IOS releases. Customers are urged to upgrade to releases that are not vulnerable to this

defect as shown in detail below.

This vulnerability can only be exploited if the enable password is known or not set.

You are strongly encouraged to read the complete advisory, which is available at

http://www.cisco.com/warp/public/707/ioshttpserverquery-pub.shtml.

Cisco is conducting an internal review of the build and distribution processes associated with its 40-bit

Cisco IOS cryptographic products. To provide seamless access to Cisco IOS 40-bit encryption capability,

Cisco will provide access to the most current 40-bit encryption images, beginning with CiscoIOS

Release 11.2 (12), 11.2(12)P, and 11.3(2). The following 40-bit encryption images will be indefinitely

unavailable:

•11.2(1)–11.2(11.2)

•11.2(2)P–11.2(11.1)P

•11.2(1)F–11.2(4)F

•11.3(1)

This review is not related to any new or previously unreported bugs. The information gathered in the

review will be used to implement new automated development and order processing applications.

The V.110 terminal adapters are not supported in CiscoIOS Release 11.2(12) P through 11.2(15) P.

Caveats

Caveats describe unexpected behavior in Cisco IOS software releases. Severity 1 caveats are the most

serious caveats; severity 2 caveats are less serious. Severity 3 caveats are moderate caveats, and only

select severity 3 caveats are included in the caveats document.

This section only contains open and resolved caveats for the current Cisco IOS maintenance release.

All caveats in Cisco IOS Release 11.2 are also in Cisco IOS Release 11.2 P.

For information on caveats in Cisco IOS Release 11.2 P, see Caveats for Cisco IOS Release 11.2 P

located on Cisco.com and the Documentation CD-ROM.