6.9 Medium
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.019 Low
EPSS
Percentile
88.4%
The ATOMIC.TCP signature engine in the Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XA, 12.3YA, 12.3T, and other trains allows remote attackers to cause a denial of service (IPS crash and traffic loss) via unspecified manipulations that are not properly handled by the regular expression feature, as demonstrated using the 3123.0 (Netbus Pro Traffic) signature.
osvdb.org/33053
secunia.com/advisories/24142
www.cisco.com/en/US/products/products_security_advisory09186a00807e0a5b.shtml
www.cisco.com/en/US/products/products_security_response09186a00807e0a5e.html
www.securityfocus.com/bid/22549
www.securitytracker.com/id?1017631
www.vupen.com/english/advisories/2007/0597
exchange.xforce.ibmcloud.com/vulnerabilities/32474
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5832