CVE-2005-3427

Published Nov 2, 2005

Last updated 7 years ago

Overview

Description: The Cisco Management Center (MC) for IPS Sensors (IPS MC) 2.1 can omit port field values while generating the Cisco IOS IPS configuration file, wich can cause some signatures to be disabled and makes it easier for attackers to escape detection.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:ciscoworks_management_center_for_ips_sensors:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50C8B21F-0C79-464A-AB73-4ED3066CD7D0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References