PT-2014-1327 · Cisco · Cisco Ips
Publicado
2014-02-22
·
Atualizado
2016-09-08
·
CVE-2014-0719
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco IPS Software versions prior to 7.1(8p2)E4
Cisco IPS Software versions prior to 7.2(2)E4
Description
The issue is related to the control-plane access-list implementation, allowing remote attackers to cause a denial of service by sending crafted packets to TCP port 7000. This results in a MainApp process outage.
Recommendations
For versions prior to 7.1(8p2)E4, update to version 7.1(8p2)E4 or later.
For versions prior to 7.2(2)E4, update to version 7.2(2)E4 or later.
As a temporary workaround, consider restricting access to TCP port 7000 to minimize the risk of exploitation.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Ips