Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco Intrusion Prevention System Management Interface Denial of Service and Fragmented Packet Evasion Vulnerabilities

cisco-sa-20060920-ips · Low · Published · Updated

Cisco Intrusion Prevention System (IPS) software contains a denial of service vulnerability in web administration interface involving malformed Secure Socket Layer (SSL) packets and a fragmented packet evasion vulnerability. There is a workaround for the web administration interface SSL denial of service vulnerability. There is no workaround for the fragmented packet IPS evasion vulnerability. Cisco has made free software available to address these vulnerabilities for affected customers. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20060920-ips.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2006-4910
Cisco Bug IDsNA
CVSS ScoreBase 2.3
Product Names From Source
Cisco Intrusion Detection System (IDS), Cisco Intrusion Prevention System (IPS), Intrusion Prevention System (IPS)

Related Products

Product CVE Evidence
Intrusion Prevention System (IPS) CVE-2006-4910 Cisco OpenVuln
Cisco Intrusion Prevention System (IPS) CVE-2006-4910 Cisco OpenVuln
Cisco Intrusion Detection System (IDS) CVE-2006-4910 Cisco OpenVuln