Denial of Service Vulnerability in Cisco IPS 4200 Series Sensors
CVE-2012-3901

Currently unrated

Key Information:

Vendor
Cisco
Status
Intrusion Prevention System
Ips 4240
Ips 4250 Sx
Ips 4255
Vendor
CVE Published:
16 September 2012

Summary

The updateTime function in sensorApp on Cisco IPS 4200 series sensors versions 7.0 and 7.1 is affected by a flaw that allows remote attackers to exploit it, potentially leading to a denial of service. This may result in a process crash and subsequent outage in traffic inspection, leaving the network vulnerable to further attacks. Administrators should apply necessary patches and updates to mitigate this issue, as indicated by Bug ID CSCta96144.

References

http://www.cisco.com/en/US/docs/security/ips/7.0/release/...
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/78870
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.