Cisco Discloses Critical IPS Vulnerability

Cisco yesterday announced yet another vulnerability, this time in the company's Intrusion Prevention System (IPS). The news comes on the same day that Cisco announced vulnerabilities in Cisco Unified CallManager (CUCM) 5.0 , and the Cisco Router Web Setup (CRWS) application.

According to the Cisco Security Advisory, the vulnerability exists in the custom device driver used with the IPS's Intel-based gigabit network adapters. A malformed IP packet received on such an adapter may cause the IPS to stop processing packets, producing alerts, performing automated actions such as logging, and to become inaccessible remotely or via the console. Networking Pipeline | Cisco Discloses Critical IPS Vulnerability

Linked by shanmuga Friday, 14th July 2006 10:33PM