Vigil@nce - Cisco IPS: denial of service of MainApp via SSL
March 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can open several SSL sessions on the administration
service of Cisco IPS, in order to trigger a denial of service of
MainApp.
Impacted products: Cisco IPS
Severity: 2/4
Creation date: 11/03/2015
DESCRIPTION OF THE VULNERABILITY
The Cisco IPS product offers an administration web service
listening on port 443/tcp.
However, when two SSL/TLS sessions are received simultaneously,
the MainApp process is locked.
An attacker can therefore open several SSL sessions on the
administration service of Cisco IPS, in order to trigger a denial
of service of MainApp.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-IPS-denial-of-service-of-MainApp-via-SSL-16376