CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2013-1243
https://notcve.org/view.php?id=CVE-2013-1243
The IP stack in Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules before 7.1(5)E4, IPS 4500 sensors before 7.1(6)E4, and IPS 4300 sensors before 7.1(5)E4 allows remote attackers to cause a denial of service (MainApp process hang) via malformed IPv4 packets, aka Bug ID CSCtx18596. La pila IP en Cisco Intrusion Prevention System (IPS) Software en ASA 5500-X IPS-SSP y módulos hardware anterior a v7.1(5)E4, sensores IPS 4500 anterior a v7.1(6)E4, y sensores IPS 4300 anterior a v7.1(5)E4 permite a atacantes remotos causar una denegación de servicio (cuelgue del proceso MainApp ) mediante paquetes IPv4 malformados, también conocido como Bug ID CSCtx18596. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130717-ips • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2008-2060
https://notcve.org/view.php?id=CVE-2008-2060
Unspecified vulnerability in Cisco Intrusion Prevention System (IPS) 5.x before 5.1(8)E2 and 6.x before 6.0(5)E2, when inline mode and jumbo Ethernet support are enabled, allows remote attackers to cause a denial of service (panic), and possibly bypass intended restrictions on network traffic, via a "specific series of jumbo Ethernet frames." Vulnerabilidad sin especificar en Cisco Intrusion Prevention System (IPS) 5.x anterior a 5.1(8)E2 y 6.x anterior 6.0(5)E2, cuando el modo inline y el soporte Jumbo Ethernet están activados, permite a atacantes remotos provocar una denegación de servicio (caída), y posiblemente evitar restricciones previstas sobre el tráfico de red a través de "series específicas de estructuras Jumbo Ethernet" • http://secunia.com/advisories/30767 http://www.cisco.com/en/US/products/products_security_advisory09186a00809b3842.shtml http://www.securityfocus.com/bid/29791 http://www.securitytracker.com/id?1020326 http://www.vupen.com/english/advisories/2008/1872/references https://exchange.xforce.ibmcloud.com/vulnerabilities/43166 • CWE-16: Configuration •