Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0631

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2015-0631
Last Modified 04 Mar 2015 12:14:15
Published 21 Feb 2015 06:59:04
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0631

Summary

Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.

Vulnerable Systems

Application

  • Cisco Ips Sensor Software 7.2%281%29e4

  • Cisco Ips Sensor Software 7.2%282%29e4


References

CISCO - 20150220 Cisco Intrusion Prevention System Key Regeneration HTTPS Denial of Service Vulnerability

BID - 72700

SECTRACK - 1031780


Last Updated: 27 May 2016 11:07:54