Wednesday, July 12, 2006

Security Advisory: Cisco Intrusion Prevention System Malformed Packet Denial of Service

Via Cisco Systems.

Cisco Intrusion Prevention System (IPS) software version 5.1 is vulnerable to a denial of service condition caused by a malformed packet, which may result in an IPS device becoming inaccessible remotely or via the console and fail to process packets. A power reset is required to recover the IPS device. There are no workarounds for this vulnerability.

Successful exploitation of the vulnerability may result in the failure of an IPS device to operate as expected. Affected devices will become inaccessible remotely or via the console and stop processing packets. If deployed as an inline device, an IPS device will stop forwarding packets, including devices configured to use the auto-bypass feature. This may result in a network outage. A power reset is required to recover the IPS device.

This issue is fixed in IPS version 5.1(2) which is available for download at http://www.cisco.com/pcgi-bin/tablebuild.pl/ips5

More here.

posted by Fergie @ 7/12/2006 09:49:00 AM

0 Comments:

Post a Comment

<< Home