CVE-1999-1175

CVSS 7.5 - HIGH
Description

Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.

Affected Products
1
Vendor Product Version
cisco ios All versions
References
http://www.ciac.org/ciac/bulletins/i-054.shtml
http://www.cisco.com/warp/public/770/wccpauth-pub....
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
http://www.ciac.org/ciac/bulletins/i-054.shtml
http://www.cisco.com/warp/public/770/wccpauth-pub....
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
Weakness Types
NVD-CWE-Other
CVE Information
CVE ID:
CVE-1999-1175
Published:
1999-12-31
Modified:
2026-04-16
CVSS Score:
7.5
Severity:
HIGH
Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Vendors
cisco
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL