Vulnerability in Cisco IPS Products Allows Packet Inspection Bypass
CVE-2006-4911

Currently unrated

Key Information:

Vendor: Cisco
Status: Ips Sensor Software
Vendor: CVE Published:; 21 September 2006

Summary

A vulnerability exists in Cisco IPS versions 5.0 and 5.1 that allows remote attackers to bypass traffic inspection when the system operates in inline or promiscuous mode. This is achieved through a specially crafted sequence of fragmented IP packets, which can evade detection mechanisms, compromising the integrity of network security. Organizations utilizing affected Cisco IPS products must apply necessary patches or updates to mitigate this vulnerability.

References

http://www.securityfocus.com/bid/20127

vdb-entryx_refsource_BID

http://www.osvdb.org/29036

vdb-entryx_refsource_OSVDB

http://www.cisco.com/warp/public/707/cisco-sa-20060920-ip...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Sep 21, 2006
Vulnerability Reserved
Sep 20, 2006