Cisco IPS MC Malformed Configuration Download Vulnerability
Via Cisco.
Summary
The CiscoWorks VPN/Security Management Solution (VMS) is a network management application that includes Web-based tools for configuring, monitoring, and troubleshooting VPNs, firewalls, network intrusion detection systems (NIDSs), network intrusion prevention systems (NIPSs) and host intrusion prevention systems (HIPSs). CiscoWorks VMS also includes network device inventory, change audit, and software distribution features.
An issue exists in one of the components of the Cisco Management Center for IPS Sensors (IPS MC) v2.1 during the generation of the Cisco IOS IPS (Intrusion Prevention System) configuration file that may result in some signatures belonging to certain classes being disabled during the configuration deployment process.
Cisco has made a free software patch available to address this vulnerability for affected customers.
This advisory will be posted at http://www.cisco.com/warp/public/707/cisco-sa-20051101-ipsmc.shtml.
Vulnerable Products
Cisco IOS IPS devices that have been configured by IPS MC v2.1.
0 Comments:
Post a Comment
<< Home