Test Kennung:	1.3.6.1.4.1.25623.1.0.106811
Kategorie:	CISCO
Titel:	Cisco Identity Services Engine GUI Denial of Service Vulnerability
Zusammenfassung:	A vulnerability in the TCP throttling process for the GUI of the Cisco;Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS);condition on an affected device where the ISE GUI may fail to respond to new or established connection;requests.
Beschreibung:	Summary: A vulnerability in the TCP throttling process for the GUI of the Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device where the ISE GUI may fail to respond to new or established connection requests. Vulnerability Insight: The vulnerability is due to insufficient TCP rate limiting protection on the GUI. An attacker could exploit this vulnerability by sending the affected device a high rate of TCP connections to the GUI. Vulnerability Impact: An exploit could allow the attacker to cause the GUI to stop responding while the high rate of connections is in progress. Solution: See the referenced vendor advisory for a solution. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6653 BugTraq ID: 98536 http://www.securityfocus.com/bid/98536 http://www.securitytracker.com/id/1038516
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.