Cisco IPS Software分析引擎拒绝服务漏洞

Bugtraq ID:65665 CVE ID:CVE-2014-0718 Cisco IPS Software是一款思科开发的入侵防御系统。 Cisco IPS Software produce-verbose-alert代码存在安全漏洞，允许未验证远程攻击者使Analysis引擎变得不稳定。 漏洞是由于在启用produce-verbose-alert动作时分析引擎不正确处理分片报文，攻击者可发送特制的分片报文使受影响系统分析引擎变得不稳定，造成拒绝服务攻击。 0 Cisco IPS Software versions 7.1 Cisco IPS Software versions 7...

Multiple Vulnerabilities in Cisco IPS Software

Cisco Intrusion Prevention System IPS Software is affected by the following vulnerabilities: Cisco IPS Analysis Engine Denial of Service Vulnerability Cisco IPS Control-Plane MainApp Denial of Service Vulnerability Cisco IPS Jumbo Frame Denial of Service Vulnerability The Cisco IPS Analysis Engin...

CVE-2013-1218

Cisco Intrusion Prevention System IPS Software in ASA 5500-X IPS-SSP software modules before 7.17sp1E4 allows remote attackers to cause a denial of service Analysis Engine process hang or device reload via fragmented 1 IPv4 or 2 IPv6 packets, aka Bug ID CSCue51272...

Basic Analysis and Security Engine (BASE) 1.4.5 - 'base_ag_main.php' Crafted Arbitrary File Upload / Arbitrary Code Execution

source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain unauthorized access, obtain potentially sensitive information, or execute arbitrary script code in t...

Nine strokes breakthrough IDS-vulnerability warning-the black bar safety net

Intrusion detectionsystem, The English abbreviation for the IDS, as the name implies, it is used in real time to detect attacks and report the attack. If the firewall than for guarding the network the door the doorman, then theintrusion detectionsystem IDS is proactively looking for criminals in...