TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
943
Signature ID: 35439
Cisco IOS EIGRP Remote Denial of Service Vulnerability
Threat Level: Warning
Industry ID: CVE-2005-4436
Bugtraq: 15978
Signature Description: Cisco IOS (Internetwork Operating System) is the software used on the Cisco routers and Cisco
switches. IOS is a package of routing, switching, internetworking and telecommunication functions tightly integrated
with a multitasking operating system. EIGRP(Enhanced Interior Gateway Routing Protocol) is a network protocol that
lets routers exchange information more efficiently. Cisco IOS (Cisco IOS 12.3(2), 12.3(3)B, and 12.3(2)T) are
vulnerable to a denial of service. By sending a spoofed neighbor announcement with either mismatched "k" values or
"Goodbye Message" TLV (Type-Length-Value), a remote attacker could cause the system reload or connection reset.
Signature ID: 35440
Cisco IOS ICMP redirect Denial of service Vulnerability
Threat Level: Warning
Industry ID: CVE-2002-2315 Bugtraq: 4786
Signature Description: Cisco IOS (Internetwork Operating System) is the software used on the Cisco routers and Cisco
switches. IOS is a package of routing, switching, internetworking and telecommunication functions tightly integrated
with a multitasking operating system. Cisco IOS (Cisco IOS Affected versions 11.0, 11.1, 11.3 and 12.0) are vulnerable
to a denial of service, caused by improper handling of ICMP redirect messages. By sending a large amount of spoofed
ICMP redirect messages , a remote attacker could cause the device to stop functioning (such as receiving routing
updates and accepting telnet connections).No remedy available as of July 6, 2008.
Signature ID: 35441
Cisco 12000 series router "ICMP unreachable" packets denial of service Vulnerability
Threat Level: Warning
Industry ID: CVE-2001-0861 Bugtraq: 3534
Signature Description: Cisco IOS (Internetwork Operating System) is the software used on the Cisco routers and Cisco
switches. IOS is a package of routing, switching, internetworking and telecommunication functions tightly integrated
with a multitasking operating system. Cisco IOS (Cisco 12000 IOS version 12.0)is vulnerable to a denial of service. By
sending a large amount of ICMP unreachable replies, the processing of the replies can saturate the CPU. Upgrade to the
latest version and available at vendor web site.
Signature ID: 35442
Cisco ACNS Authentication Library Buffer Overflow Vulnerability
Threat Level: Severe
Industry ID: CVE-2003-0982 Bugtraq: 9187
Signature Description: Application and Content Networking System(ACNS) is an integrated caching and content
deliver platform. This Software combines the demand-pull caching and accelerated delivery of web applications,
objects, files, and streaming media. It supports a number of protocols, such as File Transfer Protocol(FTP), Hypertext
Transfer Protocol Secure(HTTPS), Hypertext Transfer Protocol(HTTP). Application and Content Networking
Software(4.x before 4.2.11 and 5.x before 5.0.5) are vulnerable to a stack based buffer overflow. This rule will triggers
when an attacker is sending a long password. A successful exploitation of this issue will allow an attacker to execute
arbitrary code on vulnerable system. This issue is fixed in ACNS(4.2.11or 5.0.5). Administrators are advised to update
4.2.11 or 5.0.5 version to resolve this issue.
Signature ID: 35443
Oracle Database Server Login Access Control Bypass
Threat Level: Warning
Industry ID: CVE-2006-0547
Bugtraq: 16287