Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1888
Views
0
Helpful
2
Replies

IOS HTTP Authorization Vulnerability When Traversing ACE 4710????

Go to solution
cbregeripr
Level 1
Level 1

‎10-11-2012 12:52 PM

We had a PCI security audit of an existing VIP on our ACE 4710. The VIP is set up as HTTPS terminating on the ACE with a http redirect for all 80 traffic.  The audit reported this VIP was vunerabled to the Cisco "IOS HTTP Authorization Vulnerability".  Which basicly states, http Management is on this IOS device.  It does not make any sense, as the VIP is pointed to a pair IIS servers, Any ideas?

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20010627-ios-http-level

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
chrhiggi
Level 3
Level 3

‎10-12-2012 10:14 AM

Chris-

  There is no way to issue a command to the CLI of ACE by hitting a VIP, the tool is reporting a false positive.

Regards,

Chris Higgins

View solution in original post

0 Helpful
2 Replies 2

Go to solution
chrhiggi
Level 3
Level 3

‎10-12-2012 10:14 AM

Chris-

  There is no way to issue a command to the CLI of ACE by hitting a VIP, the tool is reporting a false positive.

Regards,

Chris Higgins

0 Helpful

Go to solution
cbregeripr
Level 1
Level 1
In response to chrhiggi

‎10-16-2012 12:09 PM

It turns the webserver behind the VIP, was returing a page when you sent a HTML GET to https://www.mysite.com/level/16/exec/-  This was being a recoded as a security vulnerability.  Thanks for the sanity check!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents