ID
VAR-201402-0198
CVE
CVE-2014-0720
TITLE
Cisco IPS Service disruption in software (DoS) Vulnerabilities
Trust: 0.8
sources:
JVNDB: JVNDB-2014-001451
DESCRIPTION
Cisco IPS Software 7.1 before 7.1(8)E4 and 7.2 before 7.2(2)E4 allows remote attackers to cause a denial of service (Analysis Engine process outage) via a flood of jumbo frames, aka Bug ID CSCuh94944. Attackers can exploit this issue to cause the Analysis Engine process to become unresponsive, which leads to denial-of-service conditions. This issue is being tracked by Cisco Bug ID CSCuh94944. The software protects against malware, worms, viruses, and more
Trust: 1.98
sources:
NVD: CVE-2014-0720 //
JVNDB: JVNDB-2014-001451 //
BID: 65669 //
VULHUB: VHN-68213
AFFECTED PRODUCTS
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.1\(6\)e4 | Trust: 1.6 |
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.1\(2\)e4 | Trust: 1.6 |
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.1\(3\)e4 | Trust: 1.6 |
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.1\(7\)e4 | Trust: 1.6 |
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.1\(4\)e4 | Trust: 1.6 |
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.1\(8\)e4 | Trust: 1.6 |
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.2\(1\)e4 | Trust: 1.6 |
| vendor: | cisco | model: | ips sensor software | scope: | lte | version: | 7.1\(1\)e4 | Trust: 1.0 |
| vendor: | cisco | model: | ips software | scope: | eq | version: | 7.1(8)e4 | Trust: 0.8 |
| vendor: | cisco | model: | ips software | scope: | eq | version: | 7.2(2)e4 | Trust: 0.8 |
| vendor: | cisco | model: | ips software | scope: | lt | version: | 7.1 | Trust: 0.8 |
| vendor: | cisco | model: | ips software | scope: | lt | version: | 7.2 | Trust: 0.8 |
| vendor: | cisco | model: | ips sensor software | scope: | eq | version: | 7.1\(1\)e4 | Trust: 0.6 |
| vendor: | cisco | model: | ips series sensors | scope: | eq | version: | 4200 | Trust: 0.3 |
sources:
BID: 65669 //
JVNDB: JVNDB-2014-001451 //
CNNVD: CNNVD-201402-318 //
NVD: CVE-2014-0720
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
VULHUB: VHN-68213 //
JVNDB: JVNDB-2014-001451 //
CNNVD: CNNVD-201402-318 //
NVD: CVE-2014-0720
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.9 |
sources:
VULHUB: VHN-68213 //
JVNDB: JVNDB-2014-001451 //
NVD: CVE-2014-0720
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201402-318
TYPE
input validation
Trust: 0.6
sources:
CNNVD: CNNVD-201402-318
CONFIGURATIONS
sources:
JVNDB: JVNDB-2014-001451
PATCH
| title: | 32605 | url: | http://tools.cisco.com/security/center/viewAMBAlert.x?alertId=32605 | Trust: 0.8 |
| title: | cisco-sa-20140219-ips | url: | http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140219-ips | Trust: 0.8 |
| title: | 32840 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=32840 | Trust: 0.8 |
| title: | cisco-sa-20140219-ips | url: | http://www.cisco.com/cisco/web/support/JP/112/1122/1122082_cisco-sa-20140219-ips-j.html | Trust: 0.8 |
sources:
JVNDB: JVNDB-2014-001451
EXTERNAL IDS
| db: | NVD | id: | CVE-2014-0720 | Trust: 2.8 |
| db: | JVNDB | id: | JVNDB-2014-001451 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201402-318 | Trust: 0.7 |
| db: | CISCO | id: | 20140219 MULTIPLE VULNERABILITIES IN CISCO IPS SOFTWARE | Trust: 0.6 |
| db: | SECUNIA | id: | 56980 | Trust: 0.6 |
| db: | BID | id: | 65669 | Trust: 0.4 |
| db: | SEEBUG | id: | SSVID-61508 | Trust: 0.1 |
| db: | VULHUB | id: | VHN-68213 | Trust: 0.1 |
sources:
VULHUB: VHN-68213 //
BID: 65669 //
JVNDB: JVNDB-2014-001451 //
CNNVD: CNNVD-201402-318 //
NVD: CVE-2014-0720
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20140219-ips | Trust: 1.7 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0720 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-0720 | Trust: 0.8 |
| url: | http://secunia.com/advisories/56980 | Trust: 0.6 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
sources:
VULHUB: VHN-68213 //
BID: 65669 //
JVNDB: JVNDB-2014-001451 //
CNNVD: CNNVD-201402-318 //
NVD: CVE-2014-0720
CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
BID: 65669
SOURCES
| db: | VULHUB | id: | VHN-68213 |
| db: | BID | id: | 65669 |
| db: | JVNDB | id: | JVNDB-2014-001451 |
| db: | CNNVD | id: | CNNVD-201402-318 |
| db: | NVD | id: | CVE-2014-0720 |
LAST UPDATE DATE
2024-11-23T22:23:11.406000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-68213 | date: | 2016-09-08T00:00:00 |
| db: | BID | id: | 65669 | date: | 2014-02-19T00:00:00 |
| db: | JVNDB | id: | JVNDB-2014-001451 | date: | 2014-03-10T00:00:00 |
| db: | CNNVD | id: | CNNVD-201402-318 | date: | 2014-02-26T00:00:00 |
| db: | NVD | id: | CVE-2014-0720 | date: | 2024-11-21T02:02:41.177 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-68213 | date: | 2014-02-22T00:00:00 |
| db: | BID | id: | 65669 | date: | 2014-02-19T00:00:00 |
| db: | JVNDB | id: | JVNDB-2014-001451 | date: | 2014-02-25T00:00:00 |
| db: | CNNVD | id: | CNNVD-201402-318 | date: | 2014-02-26T00:00:00 |
| db: | NVD | id: | CVE-2014-0720 | date: | 2014-02-22T21:55:09.593 |