CERTA-2005-AVI-429

Vulnerability from certfr_avis - Published: 2005-11-02 - Updated: 2005-11-02

Une vulnérabilité dans IPS Management Center permet à un utilisateur distant mal intentionné de contourner la politique de sécurité.

Description

IPS Management Center est un outil permettant la configuration des IPS (Intrusion Prevention System) présents dans certains IOS Cisco. Une erreur dans cet outil peut conduire à la désactivation silencieuse de certaines règles de détection lors du déploiement de la configuration. Un utilisateur mal intentionné peut utiliser cette vulnérabilité pour contourner la politique de sécurité du système vulnérable.

Solution

Appliquer le correctif fourni par l'éditeur :

http://www.cisco.com/en/US/products/products_security_advisory09186a008055dbdd.shtml#software

Les systèmes d'exploitation Cisco (IOS) destinés aux IPS configurés par IPS Management Center version 2.1.

Impacted products
Vendor Product Description
References

Show details on source website
To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLes syst\u00e8mes d\u0027exploitation Cisco (IOS)  destin\u00e9s aux IPS configur\u00e9s par \u003cTT\u003eIPS Management Center\u003c/TT\u003e  version 2.1.\u003c/p\u003e",
  "content": "## Description\n\nIPS Management Center est un outil permettant la configuration des IPS\n(Intrusion Prevention System) pr\u00e9sents dans certains IOS Cisco. Une\nerreur dans cet outil peut conduire \u00e0 la d\u00e9sactivation silencieuse de\ncertaines r\u00e8gles de d\u00e9tection lors du d\u00e9ploiement de la configuration.\nUn utilisateur mal intentionn\u00e9 peut utiliser cette vuln\u00e9rabilit\u00e9 pour\ncontourner la politique de s\u00e9curit\u00e9 du syst\u00e8me vuln\u00e9rable.\n\n## Solution\n\nAppliquer le correctif fourni par l\u0027\u00e9diteur :\n\n    http://www.cisco.com/en/US/products/products_security_advisory09186a008055dbdd.shtml#software\n",
  "cves": [],
  "initial_release_date": "2005-11-02T00:00:00",
  "last_revision_date": "2005-11-02T00:00:00",
  "links": [
    {
      "title": "Site de l\u0027\u00e9diteur :",
      "url": "http://www.cisco.com"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco #20051101-ipsmc du 01 novembre    2005 :",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051101-ipsmc.shtml"
    }
  ],
  "reference": "CERTA-2005-AVI-429",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-11-02T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans IPS Management Center permet \u00e0 un utilisateur\ndistant mal intentionn\u00e9 de contourner la politique de s\u00e9curit\u00e9.\n",
  "title": "Vuln\u00e9rablilit\u00e9 dans Cisco IPS MC",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco #20051101-ipsmc du 01 novembre 2005",
      "url": null
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.