Vulnerabilities > Cisco > Intrusion Prevention System > 7.0.9.e4

DATE CVE VULNERABILITY TITLE RISK
2014-10-19 CVE-2014-3406 Race Condition vulnerability in Cisco Intrusion Prevention System
Race condition in the IP logging feature in Cisco Intrusion Prevention System (IPS) Software 7.1(7)E4 and earlier allows remote attackers to cause a denial of service (device reload) via crafted IP traffic that matches a problematic rule, aka Bug ID CSCud82085.
network
cisco CWE-362
7.1
7.1
2014-02-27 CVE-2014-2103 Improper Input Validation vulnerability in Cisco Intrusion Prevention System
Cisco Intrusion Prevention System (IPS) Software allows remote attackers to cause a denial of service (MainApp process outage) via malformed SNMP packets, aka Bug IDs CSCum52355 and CSCul49309.
network
low complexity
cisco CWE-20
6.8
6.8
2013-07-18 CVE-2013-1243 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco products
The IP stack in Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules before 7.1(5)E4, IPS 4500 sensors before 7.1(6)E4, and IPS 4300 sensors before 7.1(5)E4 allows remote attackers to cause a denial of service (MainApp process hang) via malformed IPv4 packets, aka Bug ID CSCtx18596.
network
low complexity
cisco CWE-119
7.8
7.8
2013-07-18 CVE-2013-1218 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco products
Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 7.1(7)sp1E4 allows remote attackers to cause a denial of service (Analysis Engine process hang or device reload) via fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCue51272.
network
low complexity
cisco CWE-119
7.8
7.8