Description
Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases.
References (1)
Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0159
Scores
CVSS v3
3.5
EPSS
0.0108
EPSS Percentile
60.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-400
Status
published
Products (16)
cisco/ios
9.1
cisco/ios
11.0\(20.3\)
cisco/ios
11.1\(15\)ca
cisco/ios
11.1\(16\)
cisco/ios
11.1\(16\)aa
cisco/ios
11.1\(16\)ia
cisco/ios
11.1\(17\)cc
cisco/ios
11.1\(17\)ct
cisco/ios
11.2\(8\)sa3
cisco/ios
11.2\(9\)p
... and 6 more
Published
Aug 12, 1998
Tracked Since
Feb 18, 2026