Lucene search

[email protected]CVE-2005-2695

HistoryAug 26, 2005 - 3:50 p.m.

CVE-2005-2695

2005-08-2615:50:00

[email protected]

web.nvd.nist.gov

cve-2005-2695

ssl

certificate

checking

cisco

ciscoworks

management center

ids sensors

idsmc

monitoring center

security monitor

secmon

remote attackers

spoof

ids

ips

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.6%

JSON

Unspecified vulnerability in the SSL certificate checking functionality in Cisco CiscoWorks Management Center for IDS Sensors (IDSMC) 2.0 and 2.1, and Monitoring Center for Security (Security Monitor or Secmon) 1.1 through 2.0 and 2.1, allows remote attackers to spoof a Cisco Intrusion Detection Sensor (IDS) or Intrusion Prevention System (IPS).

Affected configurations

NVD

Node

ciscociscoworks_management_center_for_ids_sensorsMatch2.0

ciscociscoworks_management_center_for_ids_sensorsMatch2.1

ciscociscoworks_monitoring_center_for_securityMatch1.1

ciscociscoworks_monitoring_center_for_securityMatch2.0

ciscociscoworks_monitoring_center_for_securityMatch2.1

CPENameOperatorVersion
cisco:ciscoworks_management_center_for_ids_sensorscisco ciscoworks management center for ids sensorseq2.0
cisco:ciscoworks_management_center_for_ids_sensorscisco ciscoworks management center for ids sensorseq2.1
cisco:ciscoworks_monitoring_center_for_securitycisco ciscoworks monitoring center for securityeq1.1
cisco:ciscoworks_monitoring_center_for_securitycisco ciscoworks monitoring center for securityeq2.0
cisco:ciscoworks_monitoring_center_for_securitycisco ciscoworks monitoring center for securityeq2.1

CPE	Name	Operator	Version
cisco:ciscoworks_management_center_for_ids_sensors	cisco ciscoworks management center for ids sensors	eq	2.0
cisco:ciscoworks_management_center_for_ids_sensors	cisco ciscoworks management center for ids sensors	eq	2.1
cisco:ciscoworks_monitoring_center_for_security	cisco ciscoworks monitoring center for security	eq	1.1
cisco:ciscoworks_monitoring_center_for_security	cisco ciscoworks monitoring center for security	eq	2.0
cisco:ciscoworks_monitoring_center_for_security	cisco ciscoworks monitoring center for security	eq	2.1

References

secunia.com/advisories/16544/

www.cisco.com/warp/public/707/cisco-sa-20050824-idsmc.shtml

www.securityfocus.com/bid/14628

exchange.xforce.ibmcloud.com/vulnerabilities/21946

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.6%

JSON

Related for CVE-2005-2695

cvelist1 nvd1