Vulnerability Description
Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 11.2\(8\)sa5 |
| Cisco | Catalyst 2900 Vlan | All versions |
References
- http://www.cisco.com/univercd/cc/td/doc/product/lan/28201900/1928v8x/eescg8x/aleVendor Advisory
- http://www.securityfocus.com/archive/1/26008PatchVendor Advisory
- http://www.securityfocus.com/bid/615PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3294
- http://www.cisco.com/univercd/cc/td/doc/product/lan/28201900/1928v8x/eescg8x/aleVendor Advisory
- http://www.securityfocus.com/archive/1/26008PatchVendor Advisory
- http://www.securityfocus.com/bid/615PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3294
FAQ
What is CVE-1999-1129?
CVE-1999-1129 is a vulnerability with a CVSS score of 7.5 (HIGH). Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.
How severe is CVE-1999-1129?
CVE-1999-1129 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1129?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios, Cisco Catalyst 2900 Vlan.