CVE-2015-6427

Currently unrated

Key Information:

Vendor
Cisco
Status
Firesight System Software
Vendor
CVE Published:
18 December 2015

Summary

Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.

References

http://www.securitytracker.com/id/1034488
vdb-entryx_refsource_SECTRACK
http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.