Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CISCO >> Cisco IOS Intrusion Prevention System Multiple Vulnerabilities


Vulnerability Assessment Details

Cisco IOS Intrusion Prevention System Multiple Vulnerabilities

Vulnerability Assessment Summary
Uses SNMP to determine if a flaw is present

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote CISCO device can be crashed remotely

Description :


The remote version of IOS contains an intrusion prevention system which
is vulnerable to a fragmented packet evasion vulnerability and to a denial
of service vulnerability.

A possible hacker might use these flaws to disable this device remotely or to
sneak past the IPS.

Solution :

http://www.cisco.com/warp/public/707/cisco-sa-20070213-iosips.shtml

Network Security Threat Level:

High / CVSS Base Score : 8.0
(AV:R/AC:L/Au:NR/C:P/I:P/A:C/B:A)

Networks Security ID: 22549

Vulnerability Assessment Copyright: This script is (C) 2007 Tenable Network Security

Cables, Connectors

Flytech Analogue Interface ADDA-12 PC ISA Computer Card FT-8409051
$0.01
Flytech Analogue Interface ADDA-12 PC ISA Computer Card FT-8409051  pictureMeasurement Computing PCI-DAS1001/2 Multifunctional Analog & Digital I/O Card
$499.95
Measurement Computing PCI-DAS1001/2 Multifunctional Analog & Digital I/O Card pictureXitel Inport Stereo Audio Recording Kit USB Import Analog to Computer
$8.99
Xitel Inport Stereo Audio Recording Kit USB Import Analog to Computer pictureGeorge Philbrick K2-w Vacuum Tube Op-amps Analog Computer
$20.0
George Philbrick K2-w Vacuum Tube Op-amps Analog Computer picture


Discussions

No Discussions have been posted on this vulnerability.