CVE-2014-0718

The produce-verbose-alert feature in Cisco IPS Software 7.1 before 7.1(8)E4 and 7.2 before 7.2(2)E4 allows remote attackers to cause a denial of service (Analysis Engine process outage) via fragmented packets, aka Bug ID CSCui91266.

Published: Feb 22, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-0718
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
cisco / ips_sensor_software	7.1(4)e4	7.1(4)e4.x
cisco / ips_sensor_software	7.1(5)e4	7.1(5)e4.x
cisco / ips_sensor_software	7.2(1)e4	7.2(1)e4.x
cisco / ips_sensor_software	7.1(6)e4	7.1(6)e4.x
cisco / ips_sensor_software	7.1(7)e4	7.1(7)e4.x

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140219-ips

Vulnerability Database

290,206

CVE-2014-0718