Denial of Service Vulnerability in Cisco IPS Software
CVE-2014-0718

Currently unrated

Key Information:

Vendor: Cisco
Status: Ips Sensor Software
Vendor: CVE Published:; 22 February 2014

Summary

The produce-verbose-alert feature in Cisco IPS Software versions prior to 7.1(8)E4 and 7.2(2)E4 is vulnerable to a denial of service attack. This allows remote attackers to exploit the system by sending specially crafted fragmented packets that can lead to an outage of the Analysis Engine process. For remediation, users are encouraged to apply the latest security patches as provided by Cisco to prevent potential exploitation.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Feb 22, 2014
Vulnerability Reserved
Jan 2, 2014