Lucene search

[email protected]CVE-2006-4910

HistorySep 21, 2006 - 12:07 a.m.

CVE-2006-4910

2006-09-2100:07:00

[email protected]

web.nvd.nist.gov

cisco

ids

ips

web admin interface

denial of service

remote attackers

sslv2

client hello

cve-2006-4910

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.046 Low

EPSS

Percentile

92.6%

JSON

The web administration interface (mainApp) to Cisco IDS before 4.1(5c), and IPS 5.0 before 5.0(6p1) and 5.1 before 5.1(2) allows remote attackers to cause a denial of service (unresponsive device) via a crafted SSLv2 Client Hello packet.

Affected configurations

NVD

Node

ciscoids_sensor_softwareMatch4.1\(5b\)

ciscoips_sensor_softwareMatch5.0\(6\)p1

ciscoips_sensor_softwareMatch5.1\(1\)

CPENameOperatorVersion
cisco:ids_sensor_softwarecisco ids sensor softwareeq4.1\(5b\)
cisco:ips_sensor_softwarecisco ips sensor softwareeq5.0\(6\)p1
cisco:ips_sensor_softwarecisco ips sensor softwareeq5.1\(1\)

CPE	Name	Operator	Version
cisco:ids_sensor_software	cisco ids sensor software	eq	4.1\(5b\)
cisco:ips_sensor_software	cisco ips sensor software	eq	5.0\(6\)p1
cisco:ips_sensor_software	cisco ips sensor software	eq	5.1\(1\)

References

secunia.com/advisories/22046

securitytracker.com/id?1016891

www.cisco.com/warp/public/707/cisco-sa-20060920-ips.shtml

www.kb.cert.org/vuls/id/642076

www.osvdb.org/29037

www.securityfocus.com/bid/20124

www.vupen.com/english/advisories/2006/3721

exchange.xforce.ibmcloud.com/vulnerabilities/29056

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.046 Low

EPSS

Percentile

92.6%

JSON

Related for CVE-2006-4910

cert1 cisco1 cvelist1 nvd1