Cisco IPS Management Center (MC) Configuration Download Signature Failure

2005-11-01T04:23:50
ID OSVDB:20444
Type osvdb
Reporter OSVDB
Modified 2005-11-01T04:23:50

Description

Vulnerability Description

Cisco Management Center for IPS Sensors (IPS MC) contains a flaw that may allow a remote attacker to bypass intrusion detection. The issue is due to an error in the management center during the generation of the Cisco IOS IPS configuration file that is missing appropriate TCP/UDP port field values, which causes some signatures to be disabled.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Cisco has released a patch to address this vulnerability.

Short Description

Cisco Management Center for IPS Sensors (IPS MC) contains a flaw that may allow a remote attacker to bypass intrusion detection. The issue is due to an error in the management center during the generation of the Cisco IOS IPS configuration file that is missing appropriate TCP/UDP port field values, which causes some signatures to be disabled.

References:

Vendor URL: http://www.cisco.com/ Security Tracker: 1015133 Secunia Advisory ID:17397 Other Advisory URL: http://www.cisco.com/warp/public/707/cisco-sa-20051101-ipsmc.shtml Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-11/0004.html Keyword: Document ID: 68065 ISS X-Force ID: 22926 CVE-2005-3427 CERT VU: 154883 Bugtraq ID: 15269