Vulnerabilities > CVE-2006-4910 - Denial Of Service vulnerability in Cisco IPS/IDS Web Administration Interface
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The web administration interface (mainApp) to Cisco IDS before 4.1(5c), and IPS 5.0 before 5.0(6p1) and 5.1 before 5.1(2) allows remote attackers to cause a denial of service (unresponsive device) via a crafted SSLv2 Client Hello packet.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
References
- http://secunia.com/advisories/22046
- http://securitytracker.com/id?1016891
- http://www.cisco.com/warp/public/707/cisco-sa-20060920-ips.shtml
- http://www.kb.cert.org/vuls/id/642076
- http://www.osvdb.org/29037
- http://www.securityfocus.com/bid/20124
- http://www.vupen.com/english/advisories/2006/3721
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29056