Details of VAR-200508-0046

ID

VAR-200508-0046

CVE

CVE-2005-2695

TITLE

Cisco IDS sensor CiscoWorks control center SSL Certificate Verification Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200508-289

DESCRIPTION

Unspecified vulnerability in the SSL certificate checking functionality in Cisco CiscoWorks Management Center for IDS Sensors (IDSMC) 2.0 and 2.1, and Monitoring Center for Security (Security Monitor or Secmon) 1.1 through 2.0 and 2.1, allows remote attackers to spoof a Cisco Intrusion Detection Sensor (IDS) or Intrusion Prevention System (IPS). This issue is due to a failure of the software to properly validate SSL certificates. By spoofing these connections attackers may gain access to login credentials, aiding them in further attacks. Spoofed connections may also allow for the insertion of false data or the modification or destruction of other valid data contained in the affected management software. This allows attackers to hide the traces of their malicious activity, creating a false sense of security. Other attacks may also be possible

Trust: 1.26

sources: NVD: CVE-2005-2695 // BID: 14628 // VULHUB: VHN-13904

AFFECTED PRODUCTS

vendor:	cisco	model:	ciscoworks monitoring center for security	scope:	eq	version:	2.1	Trust: 1.9
vendor:	cisco	model:	ciscoworks monitoring center for security	scope:	eq	version:	2.0	Trust: 1.9
vendor:	cisco	model:	ciscoworks monitoring center for security	scope:	eq	version:	1.1	Trust: 1.9
vendor:	cisco	model:	ciscoworks management center for ids sensors	scope:	eq	version:	2.1	Trust: 1.9
vendor:	cisco	model:	ciscoworks management center for ids sensors	scope:	eq	version:	2.0	Trust: 1.9
vendor:	cisco	model:	ciscoworks monitoring center for security	scope:	ne	version:	1.0	Trust: 0.3
vendor:	cisco	model:	ciscoworks management center for ids sensors	scope:	ne	version:	1.2	Trust: 0.3
vendor:	cisco	model:	ciscoworks management center for ids sensors	scope:	ne	version:	1.1	Trust: 0.3
vendor:	cisco	model:	ciscoworks management center for ids sensors	scope:	ne	version:	1.0	Trust: 0.3

sources: BID: 14628 // CNNVD: CNNVD-200508-289 // NVD: CVE-2005-2695

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2005-2695
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200508-289
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-13904
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2005-2695
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-13904
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-13904 // CNNVD: CNNVD-200508-289 // NVD: CVE-2005-2695

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-2695

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200508-289

TYPE

Design Error

Trust: 0.9

sources: BID: 14628 // CNNVD: CNNVD-200508-289

EXTERNAL IDS

db:	BID	id:	14628	Trust: 2.0
db:	NVD	id:	CVE-2005-2695	Trust: 1.7
db:	SECUNIA	id:	16544	Trust: 1.7
db:	CNNVD	id:	CNNVD-200508-289	Trust: 0.7
db:	XF	id:	21946	Trust: 0.6
db:	CISCO	id:	20050822 SSL CERTIFICATE VALIDATION VULNERABILITY IN IDS MANAGEMENT SOFTWARE	Trust: 0.6
db:	VULHUB	id:	VHN-13904	Trust: 0.1

sources: VULHUB: VHN-13904 // BID: 14628 // CNNVD: CNNVD-200508-289 // NVD: CVE-2005-2695

REFERENCES

url:	http://www.securityfocus.com/bid/14628	Trust: 1.7
url:	http://www.cisco.com/warp/public/707/cisco-sa-20050824-idsmc.shtml	Trust: 1.7
url:	http://secunia.com/advisories/16544/	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/21946	Trust: 1.1
url:	http://xforce.iss.net/xforce/xfdb/21946	Trust: 0.6
url:	http://www.cisco.com/en/us/products/sw/cscowork/ps3990/	Trust: 0.3
url:	http://www.cisco.com/en/us/products/sw/cscowork/ps3991/	Trust: 0.3
url:	/archive/1/408780	Trust: 0.3

sources: VULHUB: VHN-13904 // BID: 14628 // CNNVD: CNNVD-200508-289 // NVD: CVE-2005-2695

CREDITS

Jan Bervar from NIL Data Communications is credited with the discovery of this issue.

Trust: 0.9

sources: BID: 14628 // CNNVD: CNNVD-200508-289

SOURCES

db:	VULHUB	id:	VHN-13904
db:	BID	id:	14628
db:	CNNVD	id:	CNNVD-200508-289
db:	NVD	id:	CVE-2005-2695

LAST UPDATE DATE

2024-08-14T15:20:09.741000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-13904	date:	2017-07-11T00:00:00
db:	BID	id:	14628	date:	2005-08-22T00:00:00
db:	CNNVD	id:	CNNVD-200508-289	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2005-2695	date:	2017-07-11T01:32:56.203

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-13904	date:	2005-08-26T00:00:00
db:	BID	id:	14628	date:	2005-08-22T00:00:00
db:	CNNVD	id:	CNNVD-200508-289	date:	2005-08-26T00:00:00
db:	NVD	id:	CVE-2005-2695	date:	2005-08-26T15:50:00