Vulnerability Details CVE-2008-2060
Unspecified vulnerability in Cisco Intrusion Prevention System (IPS) 5.x before 5.1(8)E2 and 6.x before 6.0(5)E2, when inline mode and jumbo Ethernet support are enabled, allows remote attackers to cause a denial of service (panic), and possibly bypass intended restrictions on network traffic, via a "specific series of jumbo Ethernet frames."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.5%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/30767
- http://www.cisco.com/en/US/products/products_security_advisory09186a00809b3842.shtml
- http://www.securityfocus.com/bid/29791
- http://www.securitytracker.com/id?1020326
- http://www.vupen.com/english/advisories/2008/1872/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43166
- http://secunia.com/advisories/30767
- http://www.cisco.com/en/US/products/products_security_advisory09186a00809b3842.shtml
- http://www.securityfocus.com/bid/29791
- http://www.securitytracker.com/id?1020326
- http://www.vupen.com/english/advisories/2008/1872/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43166
Products affected by CVE-2008-2060
-
cpe:2.3:a:cisco:intrusion_prevention_system:5.1
-
cpe:2.3:a:cisco:intrusion_prevention_system:6.0