Published: 19/09/2013 Updated: 29/08/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Subscribe to Intrusion Prevention System

The authentication manager process in the web framework in Cisco Intrusion Prevention System (IPS) does not properly handle user tokens, which allows remote malicious users to cause a denial of service (intermittent MainApp hang) via a crafted management-interface connection request, aka Bug ID CSCuf20148.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco intrusion prevention system

A vulnerability in the web framework of Cisco IPS Software could allow an unauthenticated, remote attacker to cause MainApp to hang intermittently due to the authentication manager process creating a denial of service (DoS) condition The vulnerability is due to improper handling of user tokens An attacker could exploit this vulnerability by send ...

CWE-287 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5497 http://tools.cisco.com/security/center/viewAlert.x?alertId=30913 http://www.securityfocus.com/bid/62517 http://www.securitytracker.com/id/1029057 http://osvdb.org/97525 https://exchange.xforce.ibmcloud.com/vulnerabilities/87280 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20130919-CVE-2013-5497

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-5497

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect