PT-2013-3002 · Cisco · Cisco Ips 4500+3

Publicado

2013-07-18

·

Atualizado

2013-10-11

·

CVE-2013-1243

CVSS v2.0

7.8

Alta

VetorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules versions prior to 7.1(5)E4 Cisco IPS 4500 sensors versions prior to 7.1(6)E4 Cisco IPS 4300 sensors versions prior to 7.1(5)E4
Description The issue allows remote attackers to cause a denial of service, resulting in the MainApp process hanging, via malformed IPv4 packets.
Recommendations For Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules versions prior to 7.1(5)E4, update to version 7.1(5)E4 or later. For Cisco IPS 4500 sensors versions prior to 7.1(6)E4, update to version 7.1(6)E4 or later. For Cisco IPS 4300 sensors versions prior to 7.1(5)E4, update to version 7.1(5)E4 or later.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2013-1243

Produtos afetados

Asa 5500-X
Cisco Ips 4300
Cisco Ips 4500
Cisco Intrusion Prevention System (Ips)