Lucene search
PRIOn knowledge basePRION:CVE-2018-0138HistoryFeb 08, 2018 - 7:29 a.m.
Design/Logic Flaw
2018-02-0807:29:00
PRIOn knowledge base
www.prio-n.com
1
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected software does not detect BitTorrent handshake messages correctly. An attacker could exploit this vulnerability by sending a crafted BitTorrent connection request to an affected device. A successful exploit could allow the attacker to bypass file policies that are configured to block files transmitted to the affected device via the BitTorrent protocol. Cisco Bug IDs: CSCve26946.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firepower_threat_defense | eq | 6.2.0 | |
| firepower_threat_defense | eq | 6.1.0 | |
| firepower_threat_defense | eq | 6.2.2 | |
| firepower_threat_defense | eq | 6.2.3 |
Related
cvelist
cvelist
CVE-2018-0138
2018-02-08 07:00:00
cisco
cisco
Cisco Firepower System Software BitTorrent File Policy Bypass Vulnerability
2018-02-07 16:00:00
nvd
nvd
CVE-2018-0138
2018-02-08 07:29:00
cve
cve
CVE-2018-0138
2018-02-08 07:29:00