CVE-2005-3427 : The Cisco Management Center (MC) for IPS Sensors (IPS MC) 2.1 can omit port field values while generating the Cisco IOS

The Cisco Management Center (MC) for IPS Sensors (IPS MC) 2.1 can omit port field values while generating the Cisco IOS IPS configuration file, wich can cause some signatures to be disabled and makes it easier for attackers to escape detection.

Published 2005-11-02 00:02:00

Updated 2017-07-11 01:33:12

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2005-3427

Probability of exploitation activity in the next 30 days: 0.08%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 33 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2005-3427

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:P/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

References for CVE-2005-3427

http://www.kb.cert.org/vuls/id/154883

US Government Resource
http://www.cisco.com/warp/public/707/cisco-sa-20051101-ipsmc.shtml

Patch;Vendor Advisory
http://securityreason.com/securityalert/137
http://www.securityfocus.com/bid/15269
https://exchange.xforce.ibmcloud.com/vulnerabilities/22926
http://securitytracker.com/id?1015133
http://www.vupen.com/english/advisories/2005/2266

Products affected by CVE-2005-3427

Cisco » Ciscoworks Management Center For Ips Sensors » Version: 2.1
cpe:2.3:a:cisco:ciscoworks_management_center_for_ips_sensors:2.1:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2005-3427

Exploit prediction scoring system (EPSS) score for CVE-2005-3427

CVSS scores for CVE-2005-3427

References for CVE-2005-3427

Products affected by CVE-2005-3427