This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote device is missing a vendor-supplied security patch.
A vulnerability in the web framework of Cisco IPS Software could allow
an unauthenticated, remote attacker to cause MainApp to hang
intermittently due to the authentication manager process creating a
denial of service (DoS) condition.
The vulnerability is due to improper handling of user tokens. An
attacker could exploit this vulnerability by sending a crafted
connection request to the Cisco IPS management interface.
See also :
Apply the relevant patch referenced in Cisco Bug Id CSCuf20148.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true
Nessus Plugin ID: 72510 ()
Bugtraq ID: 62517
CVE ID: CVE-2013-5497
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.