CVE-2011-4022

CWE-287 — Improper Authentication6 documents5 sources

Severity

5.0MEDIUM

EPSS

0.7%

top 28.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Intrusion Prevention System

Timeline

PublishedMay 3

Latest updateMay 17

Description

The sensor in Cisco Intrusion Prevention System (IPS) 7.0 and 7.1 allows remote attackers to cause a denial of service (file-handle exhaustion and mainApp hang) by making authentication attempts that exceed the configured limit, aka Bug ID CSCto51204.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcisco/intrusion_prevention_system7.0, 7.1+1

🔴Vulnerability Details

GHSA

GHSA-q6pw-prgw-qpmh: The sensor in Cisco Intrusion Prevention System (IPS) 7↗2022-05-17

▶

CVEList

CVE-2011-4022: The sensor in Cisco Intrusion Prevention System (IPS) 7↗2012-05-03

▶

📋Vendor Advisories

Red Hat

krb5: kpropd unexpected termination on invalid input (MITKRB5-SA-2011-001)↗2011-02-08

▶

💬Community

Bugzilla

CVE-2010-4022 CVE-2011-0281 CVE-2011-0282 krb5 various flaws [fedora-all]↗2011-02-08

▶

Bugzilla

CVE-2010-4022 krb5: kpropd unexpected termination on invalid input (MITKRB5-SA-2011-001)↗2010-12-17

▶