Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2060

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-2060
Last Modified 07 Mar 2011 10:08:38
Published 18 Jun 2008 03:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2060

Summary

Unspecified vulnerability in Cisco Intrusion Prevention System (IPS) 5.x before 5.1(8)E2 and 6.x before 6.0(5)E2, when inline mode and jumbo Ethernet support are enabled, allows remote attackers to cause a denial of service (panic), and possibly bypass intended restrictions on network traffic, via a "specific series of jumbo Ethernet frames."

Vulnerable Systems

Application

  • Cisco Intrusion Prevention System 5.1

  • Cisco Intrusion Prevention System 6.0


References

CISCO - 20080618 Cisco Intrusion Prevention System Jumbo Frame Denial of Service

XF - cisco-ips-ethernetframes-dos(43166)

VUPEN - ADV-2008-1872

SECTRACK - 1020326

BID - 29791

SECUNIA - 30767


Last Updated: 27 May 2016 10:47:44