Guest

Preview Tool

Cisco Bug: CSCuq61428 - IOS PKI CRL and CDP At the end of HTTP GET / There should not be zeros

Last Modified

Nov 11, 2019

Products (81)

  • Cisco IOS
  • Cisco 819 Hardened Integrated Services Router
  • Cisco 2951 Integrated Services Router
  • Cisco 1905 Serial Integrated Services Router
  • Cisco 812 CiFi Integrated Services Router
  • Cisco 861W Integrated Services Router
  • Cisco VG204XM Analog Voice Gateway
  • Cisco 886VAG 3G Integrated Services Router
  • Cisco 888W Integrated Services Router
  • Cisco C897VA Integrated Services Router
View all products in Bug Search Tool Login Required

Known Affected Releases

15.4(1)T1

Description (partial)

Symptom:
At the end of HTTP GET there should not be any zeros after \r\n.
These zeros are added only when CRYPTO PKI is downloading CRL, if we use "ip sla" zeros are not added.

This is causing some of Firewalls/IPSes to have problem (in customer scenario it's ASA CX which misinterprets it).

Conditions:
Zeros (00 00 00) added at the end of HTTP GET / payload
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.