Cisco.UTF.Encoding.IDS.Bypass
Description
This indicates an attack attempt against a Denial of Service vulnerability in Cisco firewall products.
The vulnerability is caused by an error when the vulnerable software handles a UTF encoded http request. It allows a remote attacker to bypass the security checks of vulnerable systems via a crafted HTTP request.
Affected Products
Cisco Secure Intrusion Detection System
Cisco Catalyst 6000 Intrusion Detection System Module
Impact
Security Bypass: Remote attackers can bypass security checking of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for suggested workaround.
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20010906-intrusion-detection
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |