[c-nsp] Cisco Security Advisory: Cisco Intrusion Prevention System MainApp Secure Socket Layer Denial of Service Vulnerability

Cisco Systems Product Security Incident Response Team psirt at cisco.com
Wed Mar 11 12:28:11 EDT 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Cisco Intrusion Prevention System MainApp Secure Socket Layer Denial of Service Vulnerability

Advisory ID: cisco-sa-20150311-ips

Revision 1.0

For Public Release 2015 March 11 16:00  UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

The Cisco Intrusion Prevention System (IPS) Software has a vulnerability within the SSL/TLS subsystem utilized by the web management interface which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

Cisco has released free software updates that address this vulnerability. This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150311-ips
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - https://gpgtools.org

iQIcBAEBCgAGBQJVAGihAAoJEIpI1I6i1Mx3PCYP/j5Ej14GymDq0dvsDWmnLYlO
JAmJmrSV+r1vWHmj0YcVLVGyXGbmBYnHxZHNCgyB+RKC67jdmoE0zCL5bi69dEFr
ee+L/o8/f22NXcbATdJCb8vdjgW6/3cnKiODyDoEtM7MuDmH/h7eml/I3dDQBfES
oKMTNb+bxVi8ojVNBDa8ml9+Xp6ppuJzDIUm/eq8tAMQXncFMfsQehYCq9GRGN8Z
Rt5N309+C8vcVp5jHP06vcG5xH/sript/zY49nW/TYoC57EMHq3/c0h13mrbCRlO
wIf8Kr+YET1p7++hMzbWq6SLlz0Np5oG3B3zN1UvJ1ABiJ8y3xnV5MrC7iUU17R4
mEQCCJSvvKV32DguKWJ3H/xfZr5uiPPgyXuMw4rPwPBjUJyOYuxArn5q+OXo4JLM
F2oqIgTkm0zHYtEoEwH51KH6X9N2QrssUMomxBsSOs4LwnNcKB2Fyq0HQpX492PL
Pp6DKkOV24HLh5AHwrwKHArmLUIfGejBgyUrjbCt/eT4cutKhwrQhunEnis6jzYj
fTyLmQ5cZjIhT4+8akurpze1fNCTLFd2FVexvbRxNro2iL30LdFDHDUpz/9xsqks
A+ONgWGeKMKnCjawZ9s2OPgNV7WEvibjFiDWHdH7xZM8YpwR/5381OQNwCsdKdvW
alelR0tXSuOXiO6EN9ha
=kotf
-----END PGP SIGNATURE-----


More information about the cisco-nsp mailing list